Static task
static1
Behavioral task
behavioral1
Sample
8bdef75fe8e98b98f0e4205de49302a0.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
8bdef75fe8e98b98f0e4205de49302a0.exe
Resource
win10v2004-20231215-en
General
-
Target
8bdef75fe8e98b98f0e4205de49302a0
-
Size
454KB
-
MD5
8bdef75fe8e98b98f0e4205de49302a0
-
SHA1
e4d792282d0be86ed7d82e756e5ea875c94f7422
-
SHA256
f17f0b6b51814b2b368a0af04879d37619f56c08573b21210913372b0dcd666c
-
SHA512
8b066ea1edab9cf74c66f6eae99f951e003423dafb926d30e7a8ed59d4ecd9116b67cb7eb51f5ac62e64f111fe2ec9a9b6e2ba53c78e36773dd4b43927314157
-
SSDEEP
12288:l64XXtgRzsKb7U8kbVK2FRF2vYrzM+Czau2M1lKgw0eO:l64XXGU8kVt/2vWM+Czau9Zn
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8bdef75fe8e98b98f0e4205de49302a0
Files
-
8bdef75fe8e98b98f0e4205de49302a0.exe windows:4 windows x86 arch:x86
d5f2d8849813a4009dd8b330de1b3bde
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
user32
DefWindowProcA
oleaut32
VariantChangeTypeEx
Sections
Size: 435KB - Virtual size: 752KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 18KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE