Wmyc.pdb
Static task
static1
Behavioral task
behavioral1
Sample
ec4b78232f8a512855d481d2e65e5ccbe880fb4fd7c159b91e6268d8d2d382ca.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
ec4b78232f8a512855d481d2e65e5ccbe880fb4fd7c159b91e6268d8d2d382ca.exe
Resource
win10v2004-20231215-en
General
-
Target
ec4b78232f8a512855d481d2e65e5ccbe880fb4fd7c159b91e6268d8d2d382ca
-
Size
672KB
-
MD5
fb5df8c9bf6ae5421045775af945707f
-
SHA1
8ae75799edf90a8ba98e2251ecebdc2fcc398f49
-
SHA256
ec4b78232f8a512855d481d2e65e5ccbe880fb4fd7c159b91e6268d8d2d382ca
-
SHA512
ecb58bea6b24c8bc136ac063b2f52177ab4315966381a12be3a1e067882cce91abbd77e1271ceb9a014e14654fcc59e2db53fab343e29037a0deeb469e8d3554
-
SSDEEP
12288:YePFLVoq3F2tV9s23ZG4ja3aoPg1BteIzjxR0VqFsqSEmz2Z8juz:YePRVoMF2tsg5jyo9XzcVysGmz26qz
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ec4b78232f8a512855d481d2e65e5ccbe880fb4fd7c159b91e6268d8d2d382ca
Files
-
ec4b78232f8a512855d481d2e65e5ccbe880fb4fd7c159b91e6268d8d2d382ca.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 656KB - Virtual size: 654KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ