Static task
static1
Behavioral task
behavioral1
Sample
7d28488cf93e2b9b19dd4506cbb7e63f.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
7d28488cf93e2b9b19dd4506cbb7e63f.exe
Resource
win10v2004-20231215-en
General
-
Target
7d28488cf93e2b9b19dd4506cbb7e63f
-
Size
19KB
-
MD5
7d28488cf93e2b9b19dd4506cbb7e63f
-
SHA1
10220f74e46aceb1b479b919ca839dd0022865dc
-
SHA256
81754ebf70b51164e40a1933ba485ffba0b3bb159cfbc383742f25ab57539e18
-
SHA512
9d8dc0f2f477b33ee19934f7510d9b89b5eeeebe56e4bcdf310350691f2ff6ec202e24db709e080886bcbf52ad2a618246531d4245d9849eb1570b35ee07201d
-
SSDEEP
384:J4PiUj13X6AvIxHl59t1gJKWZLLAKnDA8RwfYj6:J4Pic3X6A0T16xNA0wC
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7d28488cf93e2b9b19dd4506cbb7e63f
Files
-
7d28488cf93e2b9b19dd4506cbb7e63f.exe windows:4 windows x86 arch:x86
7e2a077abd0ae777c0a4a447868b5c38
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetThreadPriority
GetOEMCP
PulseEvent
GetModuleHandleA
EnumCalendarInfoA
GetConsoleInputWaitHandle
GetThreadTimes
GetThreadLocale
TlsGetValue
GetNumberOfConsoleMouseButtons
GetUserDefaultLangID
TlsFree
GetExitCodeThread
lstrcpyA
IsDBCSLeadByte
VirtualAlloc
lstrcatA
OutputDebugStringA
GetConsoleCP
ReleaseMutex
SetEvent
user32
GetWindowTextA
InvalidateRect
GetForegroundWindow
GetWindow
IsIconic
GetClassInfoExA
ReleaseDC
GetActiveWindow
GetDC
IsWindowVisible
ValidateRect
ReleaseDC
CloseWindow
RegisterClassA
GetSystemMetrics
ShowWindow
GetClassNameA
GetWindowTextLengthA
GetFocus
tapi32
MMCSetServerConfig
MMCShutdown
MMCSetLineInfo
MMCInitialize
MMCSetPhoneInfo
mlang
DllGetClassObject
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 522B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ