Static task
static1
Behavioral task
behavioral1
Sample
d4d6dd0ba8770b4bd114c6a5397dc8ad8ede7bd49fa1fb9f3e1a32fbba26f986.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
d4d6dd0ba8770b4bd114c6a5397dc8ad8ede7bd49fa1fb9f3e1a32fbba26f986.exe
Resource
win10-20231220-en
General
-
Target
d4d6dd0ba8770b4bd114c6a5397dc8ad8ede7bd49fa1fb9f3e1a32fbba26f986
-
Size
360KB
-
MD5
a5a12a44f068a3ae332eabc8d24b551e
-
SHA1
bba10f454c03d83ccfadcff66366f899ca1f889f
-
SHA256
d4d6dd0ba8770b4bd114c6a5397dc8ad8ede7bd49fa1fb9f3e1a32fbba26f986
-
SHA512
f152a7428bd1030da101c4fda243f0e184b414f09b911120138a4816504684444aa094d4feee989d9558dc242619d8c21e2102a5fefbf8bd840b18c400322196
-
SSDEEP
6144:Dbl49BFksgTOzEV6zs1hfk8MIcG1Zb7d+0PuSCU4CzmJkdVds:ngBFkRTOzEV6zs1hfk8oYVd+Dj4mYVds
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource d4d6dd0ba8770b4bd114c6a5397dc8ad8ede7bd49fa1fb9f3e1a32fbba26f986
Files
-
d4d6dd0ba8770b4bd114c6a5397dc8ad8ede7bd49fa1fb9f3e1a32fbba26f986.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 820B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 233KB - Virtual size: 233KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 120KB - Virtual size: 119KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ