Static task
static1
Behavioral task
behavioral1
Sample
7311de419fbf3c1deb55fb8fd1fbddd7.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
7311de419fbf3c1deb55fb8fd1fbddd7.exe
Resource
win10v2004-20231222-en
General
-
Target
7311de419fbf3c1deb55fb8fd1fbddd7
-
Size
256KB
-
MD5
7311de419fbf3c1deb55fb8fd1fbddd7
-
SHA1
ef0d284378380a83616e68a4e3fa6f30721077de
-
SHA256
4a49888d25be34c24b400a6bd91a28d86c9e612cb9282cf9e635fda455141135
-
SHA512
97baff5e21778f5092dd15b58f7a4557d4455103681cbf54889bf5bfd70bb4c475ad06e0ce21c063f83434866cb6c7f661c41bbd726261180b6430d3692c69a2
-
SSDEEP
6144:hn0s+NXYTFClfNPzCUf3byyDOJdojArKLQqysqy81nhJ:h0s2YTMZNPzffXDgLiQq538Z7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7311de419fbf3c1deb55fb8fd1fbddd7
Files
-
7311de419fbf3c1deb55fb8fd1fbddd7.exe .ps1 windows:4 windows x86 arch:x86 polyglot
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.rsrc Size: 198KB - Virtual size: 197KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.text Size: 57KB - Virtual size: 57KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ