Static task
static1
Behavioral task
behavioral1
Sample
776a2a9c34e5398b7a6194be9194a1c6.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
776a2a9c34e5398b7a6194be9194a1c6.exe
Resource
win10v2004-20231215-en
General
-
Target
776a2a9c34e5398b7a6194be9194a1c6
-
Size
122KB
-
MD5
776a2a9c34e5398b7a6194be9194a1c6
-
SHA1
f503065bd4ea2da7fb61c9be4e8e473b2bedc1cc
-
SHA256
be8467b59b415507349bd515e998b411c8e24ef4b5dde4aa6a4c1fc40959f36c
-
SHA512
4d168a8022d5f4be6c7b9645a00e3f81e1a8b98fde834dd561711e0c487735ed7930f5290f9b97b2e65abdf89209224da5180a73b564d0ff36a1af16b3a596a4
-
SSDEEP
1536:cWlljCGHgf5ECIZ9Q6CW6lpU2ZZk0IqVwGgXK3Ahuh/vEClhvv9DxF3WdQV:fjC55y6jXk0GGZAhCXbrdDxFP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 776a2a9c34e5398b7a6194be9194a1c6
Files
-
776a2a9c34e5398b7a6194be9194a1c6.exe windows:4 windows x86 arch:x86
d41fb1dad53ad2683344d4393920ad39
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
Sections
code Size: 112KB - Virtual size: 112KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.avp Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE