Static task
static1
Behavioral task
behavioral1
Sample
doc00000000000001312200_pdf .exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
doc00000000000001312200_pdf .exe
Resource
win10v2004-20231215-en
General
-
Target
doc00000000000001312200_pdf .exe
-
Size
46KB
-
MD5
364ee961fab1596a1a852bca0aafb2e8
-
SHA1
89f95a42f6905da9ac0ee4a5fcaffbd3e5cdc532
-
SHA256
a5248e350454760fed2b9a33d8016b0d59a8394e692d1e28a0d33e30b3eb0fc2
-
SHA512
2ab80b91c1d8177d8aff1cccc79dfca8a6ad50b2b556af983f5b9484547b89ce66ac7e446c8d2318a9c8b339f1f6da4f3fbd853e3d5f00347264c65c289437e4
-
SSDEEP
96:nIzmisq8t08Y6qytdVYbP0C7m0KhJy0MR6b7XW9zNt:IzPu3qy7VemN873
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource doc00000000000001312200_pdf .exe
Files
-
doc00000000000001312200_pdf .exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 42KB - Virtual size: 42KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ