faKz.pdb
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.TrojanLoader.MSIL.DaVinci.Heur.7337.16124.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.TrojanLoader.MSIL.DaVinci.Heur.7337.16124.exe
Resource
win10v2004-20231215-en
General
-
Target
SecuriteInfo.com.TrojanLoader.MSIL.DaVinci.Heur.7337.16124.exe
-
Size
574KB
-
MD5
4cef4213abb096ac7a418641bf3d9e5b
-
SHA1
c2e872f08030fe0c33ba31055ee7f339e3bc9f92
-
SHA256
aeeca36d177b00781e8a69a0f4cf0b95c7fba372ed672d2453ad97bc8e93ca9d
-
SHA512
e93098d8b9b3e02b905d31cc674e025b931d68aa18ea7cdc3c9aee9184161e8186929c3cd54098ea9381d8f18fbfc838b051eb1ac2ef9c584f56495a811617eb
-
SSDEEP
12288:FD8j8qshDLtAJE1/GnFKJjo12J9jPbrNr46x:J8bshvtQE9GOPjF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SecuriteInfo.com.TrojanLoader.MSIL.DaVinci.Heur.7337.16124.exe
Files
-
SecuriteInfo.com.TrojanLoader.MSIL.DaVinci.Heur.7337.16124.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 571KB - Virtual size: 571KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ