Static task
static1
Behavioral task
behavioral1
Sample
6d4166ae6ee8d6ec5af09d73d256bd83.exe
Resource
win7-20231215-en
General
-
Target
6d4166ae6ee8d6ec5af09d73d256bd83
-
Size
278KB
-
MD5
6d4166ae6ee8d6ec5af09d73d256bd83
-
SHA1
8392c338cbaa7fe0787eef96bbca84c483e50d33
-
SHA256
10f2e75aeb164c1771cf3392cecdb50f0e5d22331654075a88bc691eb0602ce5
-
SHA512
a789f6a2fc9227f483e11adae0c69e3d2216911524dfc02a7a74e9a236edb25bbb468c3d9280f828333fab11f3f295c1498597ead61da225455b62590e89f8d4
-
SSDEEP
6144:r5C4JCWTWFjtT2VUnw/6knPrCVsoSortxBFzNKNzKz/:r5UWTWEURGjCaoSortVgQz
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 6d4166ae6ee8d6ec5af09d73d256bd83
Files
-
6d4166ae6ee8d6ec5af09d73d256bd83.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 276KB - Virtual size: 275KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ