Static task
static1
Behavioral task
behavioral1
Sample
7e1067cbb6239d1c188d97a3bf6e31ee.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
7e1067cbb6239d1c188d97a3bf6e31ee.exe
Resource
win10v2004-20231222-en
General
-
Target
7e1067cbb6239d1c188d97a3bf6e31ee
-
Size
637KB
-
MD5
7e1067cbb6239d1c188d97a3bf6e31ee
-
SHA1
57497649ea5c3f4f246c503fb96e4f72d2a4bf37
-
SHA256
337994855777c60d38a874912eda4490ea7ea120c0a4b4ec9cb9d6bf614aebcb
-
SHA512
27f01757a6c7801f105770229545fbb2d67890d2bab48532c797de84e8dae4081fca505f61c214b950f49e2093f06d8a99eee1cfe06a87a00a3c586ee0bd873f
-
SSDEEP
12288:uR1+jSpEoRzUA4Usj5sWUznwnprl76IkNjfCJaqYYNwJAULO4ywEWYd0:EEjSpEoRzU3UEgwnpR76IkEaMNwJAJel
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7e1067cbb6239d1c188d97a3bf6e31ee
Files
-
7e1067cbb6239d1c188d97a3bf6e31ee.exe windows:4 windows x86 arch:x86
6d546abb2421eafbdb980393cd40b93a
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
WaitForSingleObject
LoadLibraryA
lstrlenA
GetModuleHandleA
VirtualProtect
GetConsoleCP
GetProfileIntA
InterlockedExchange
HeapReAlloc
TlsGetValue
TlsFree
GetACP
GetAtomNameA
GetTickCount
CompareFileTime
GetVersion
FindAtomA
HeapWalk
GetStdHandle
CloseHandle
GlobalUnlock
user32
ModifyMenuA
GetDlgItem
CopyRect
GetScrollRange
TranslateMessage
InsertMenuA
SetWindowPos
SetPropA
InflateRect
PostQuitMessage
SubtractRect
LoadIconA
DestroyMenu
PostMessageA
EnableScrollBar
UpdateWindow
GetMenuStringA
GetMenu
EqualRect
DispatchMessageA
ShowWindow
CreateCaret
MessageBoxA
GetKeyboardLayout
DialogBoxParamA
PaintDesktop
GetWindowTextA
msi
MsiCloseHandle
MsiEnumProductsA
MsiDoActionA
MsiEnumClientsA
MsiGetMode
clbcatq
CoRegCleanup
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1024B - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ