Static task
static1
Behavioral task
behavioral1
Sample
74f79c0739738fd6ab5fdadf338e9c05.exe
Resource
win7-20231215-en
General
-
Target
74f79c0739738fd6ab5fdadf338e9c05
-
Size
342KB
-
MD5
74f79c0739738fd6ab5fdadf338e9c05
-
SHA1
cb307be3214651b48af2996f4c7e92d2ad4b0ade
-
SHA256
bdc8ab3532c34a49d44c54fda3c4bd69eda762f5095a7da7f0cfe3f1d2c22214
-
SHA512
ac9c175015074d37458ddffda4322952325e8f4ea3a18650da5f2346fedb3a5443d85ccb6e210fe1601e3861f1fff97a929797ba83e6c384e972b1c375f14ac6
-
SSDEEP
6144:2Q2SIkatx3Nw6vn5DBvQdJnyvpzdQgTghL1cTlE3u9s8CsjJygwz:2QzmiC5dILyYgIclAu9s8Csjg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 74f79c0739738fd6ab5fdadf338e9c05
Files
-
74f79c0739738fd6ab5fdadf338e9c05.exe windows:5 windows x86 arch:x86
97bed9ef4f9823b5668276ae443efdd2
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
advapi32
RegQueryValueExA
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 150KB - Virtual size: 150KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 152B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ