Static task
static1
General
-
Target
Bobbys_spooferv3_.exe
-
Size
933KB
-
MD5
9c7c33638f8f1939c262e52c2563c0cc
-
SHA1
9e4451ab4fdc6590cb07628404b1b806aaee4bbf
-
SHA256
85d04ec2bdba2f30e69e47b6e70c0b6381903077c16ecc587ac8131c80fdd138
-
SHA512
7cb061a87241625930caf38369b91f67e250f711afbc52dd1d95797bd543eb3d3643c7de5628fc72681d6aa05edce9a9cc879c1cfe03a5245cedef5fcd808f29
-
SSDEEP
12288:7K5XKJuj+xQts/m3W0wttfVw0yXz4zT/vd+VIPZdPapwVhQfRPbYfZjyvLe5bLFI:7WKJujmcO48YwY5i1mLgiN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Bobbys_spooferv3_.exe
Files
-
Bobbys_spooferv3_.exe.exe windows:4 windows x86 arch:x86
a9c887a4f18a3fede2cc29ceea138ed3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
msvcrt
malloc
memset
strcmp
strcpy
getenv
sprintf
fopen
fwrite
fclose
__argc
__argv
_environ
_XcptFilter
__set_app_type
_controlfp
__getmainargs
exit
shell32
ShellExecuteA
kernel32
SetUnhandledExceptionFilter
Sections
.text Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 735KB - Virtual size: 735KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: - Virtual size: 4B
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 195KB - Virtual size: 194KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ