Static task
static1
Behavioral task
behavioral1
Sample
70564c638340c5cb8f1d77cd072a89dd.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
70564c638340c5cb8f1d77cd072a89dd.exe
Resource
win10v2004-20231215-en
General
-
Target
70564c638340c5cb8f1d77cd072a89dd
-
Size
1.5MB
-
MD5
70564c638340c5cb8f1d77cd072a89dd
-
SHA1
11e942743d1182059eab61faea1abd985a2bef35
-
SHA256
e13d4fbdad2b70bb22b2140e0124a254ffcfb4efdc4dbccff6ee99fbe5b828b4
-
SHA512
5cc93c42418308447d20a528940b2553f289e355c88c5ae4be73b2a1cf2686b7eb4be8c2d5f753c5b36144bc8690f25617c4d801c53bccd9da80b9b9dd8b2e5f
-
SSDEEP
24576:SCiaikIi4ajdgz3mDMCGDQjTQjak2TbWWuj6AJSe84JwKMyTU+d8+1F:b4gOz2DMCGDQ3RVTbWr6A0GJM+1F
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 70564c638340c5cb8f1d77cd072a89dd
Files
-
70564c638340c5cb8f1d77cd072a89dd.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 284KB - Virtual size: 284KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
....... Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE