Static task
static1
Behavioral task
behavioral1
Sample
d1bd880cb947acfee69df06565ae4f37d5a1bf40d21c2c99257a269d2bac201f.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
d1bd880cb947acfee69df06565ae4f37d5a1bf40d21c2c99257a269d2bac201f.exe
Resource
win10v2004-20231222-en
General
-
Target
d1bd880cb947acfee69df06565ae4f37d5a1bf40d21c2c99257a269d2bac201f
-
Size
1.3MB
-
MD5
bb6d09ac687fa40d3c90703da5cb1b94
-
SHA1
69c70f7ce3df23d5d722865d0d5aaae26d621987
-
SHA256
d1bd880cb947acfee69df06565ae4f37d5a1bf40d21c2c99257a269d2bac201f
-
SHA512
060846eb5d2f6b6a34eb390c3d6e350c368e4b68038da342d06af95aeb800d79837b8a4a7a75a4826fe0b423950a418aecdda8ed3d1fd761745600cabee25600
-
SSDEEP
12288:0KqSk5DVmCZCJim6y+WBPYeSqCrJG8HbG5zwMHXiLG4Xt2qeT82UmHRrK:05VmkVm2WNbKrJFHbG5zwMHC1d2qeX
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d1bd880cb947acfee69df06565ae4f37d5a1bf40d21c2c99257a269d2bac201f
Files
-
d1bd880cb947acfee69df06565ae4f37d5a1bf40d21c2c99257a269d2bac201f.exe windows:6 windows x64 arch:x64
94986a63cdd4a2a559ff56407e6c498f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
Sections
.text Size: 1.0MB - Virtual size: 1.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 150KB - Virtual size: 149KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 10KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 47KB - Virtual size: 46KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 86KB - Virtual size: 86KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ