Static task
static1
Behavioral task
behavioral1
Sample
8f971c054cd506d521cd458102d4025f.exe
Resource
win7-20231215-en
General
-
Target
8f971c054cd506d521cd458102d4025f
-
Size
199KB
-
MD5
8f971c054cd506d521cd458102d4025f
-
SHA1
5c938e37701bc4a287343b283938bdcb1c0f27b0
-
SHA256
935a82b438893da3447df6631f85b494e48c474b410d09199b9a80359506232c
-
SHA512
50733b0fa5748bc6b0145b1139d56a3af96f5c9aa9b337063f3484ad5e4bb012db1615675ad8c78842eb49ccca475493de90a7a733fe01fe341bd5f818e856d3
-
SSDEEP
3072:b2HR1GaR3X65QahMBrvvbbk9alOx9IqjSLseQOOtpQWtgX/:b2h65QahMBzvbbtOT9jSLseQNPQWtg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8f971c054cd506d521cd458102d4025f
Files
-
8f971c054cd506d521cd458102d4025f.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
�c|h Size: 146KB - Virtual size: 145KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ