Static task
static1
Behavioral task
behavioral1
Sample
7518b77b2728c69d7d281274eab05483.exe
Resource
win7-20231215-en
General
-
Target
7518b77b2728c69d7d281274eab05483
-
Size
20KB
-
MD5
7518b77b2728c69d7d281274eab05483
-
SHA1
0c63d52d76b673a973b9f97f770a1ff60b1a24f1
-
SHA256
59f59d1ae877014be475c8727d7d70c0d8ae7e5b4a24f8b56ffc9f80ee48e3e0
-
SHA512
722048cc54ca306acea191bc323494a2d1ba875a6030f06b28e84cdabedd11c3a5b7f795ead1e8e5d03ef5dc3040debdff35ca3412578184b45417ebdc2dedcd
-
SSDEEP
192:zE1cm0FGriar9/sM6efq7iGajQHewC19eBfXNLIHMBEm:o1cTk9/sMhfBGF+wCHKfXOHHm
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 7518b77b2728c69d7d281274eab05483
Files
-
7518b77b2728c69d7d281274eab05483.exe windows:4 windows x86 arch:x86
670f90ed75200b5eb1b566f0d8c39ba9
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
MethCallEngine
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord717
ProcCallEngine
ord644
ord100
Sections
.text Size: 12KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ