Static task
static1
Behavioral task
behavioral1
Sample
8795e406982147ed0af376e985f53e66.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
8795e406982147ed0af376e985f53e66.exe
Resource
win10v2004-20231215-en
General
-
Target
8795e406982147ed0af376e985f53e66
-
Size
385KB
-
MD5
8795e406982147ed0af376e985f53e66
-
SHA1
809fd7047c36a1a17adc2670b59d68e8132214e2
-
SHA256
2d7637535379c69a825a452a0376f2f283448d44e2078ea14d947d7c186ccd3e
-
SHA512
e07a785607b044d249c25d7187c528580c83c6943d6a35ee56afe3ac173877440a71bb809275f32422b4dcdb023cebae71fc3d0979dcdc96a5572aad8ec656ac
-
SSDEEP
6144:Rxq6V1u8pQD/xQezlrlnCzkyP99vR0GvCpOVGgTKfgNqWESRMgYLB:rq6y8pQtQezvnCIyvc6xR5iB
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8795e406982147ed0af376e985f53e66
Files
-
8795e406982147ed0af376e985f53e66.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.text Size: 28KB - Virtual size: 27KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 352KB - Virtual size: 352KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.bss Size: - Virtual size: 6KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ