Static task
static1
Behavioral task
behavioral1
Sample
97ea93b197688392c30a34a7b144b9de.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
97ea93b197688392c30a34a7b144b9de.exe
Resource
win10v2004-20231215-en
General
-
Target
97ea93b197688392c30a34a7b144b9de
-
Size
810KB
-
MD5
97ea93b197688392c30a34a7b144b9de
-
SHA1
07bb568ec93de0ab927919ff865d126da377d5fd
-
SHA256
08b4f09d4328bad545126df0225c611c659db63f96e087968ebd3d568c51d18d
-
SHA512
9310c03c1405c8ed9a6a07af5ba2171141655f4103883718eb25c86c06b1a102094de219935b1faf71a627a56918c2e9b3e4e6e3079eb44aef26cc3552b1d6cd
-
SSDEEP
24576:S59euQxdiJpQx03pG5BdsLN7ir08shv1yIe:6lQPVi32nsLN7irbcE
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 97ea93b197688392c30a34a7b144b9de
Files
-
97ea93b197688392c30a34a7b144b9de.exe windows:4 windows x86 arch:x86
06c7d005d2c0b21eab5d6b17c84f1625
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetPrivateProfileIntA
FindAtomA
GetStdHandle
GetComputerNameA
GetLastError
CreateFileMappingW
lstrlenW
GetTickCount
TlsAlloc
ExitProcess
GetFileAttributesA
GetLocalTime
CloseHandle
MapViewOfFile
SetLastError
VirtualAlloc
GlobalFree
FindClose
TlsGetValue
GetModuleHandleW
user32
DrawStateA
GetClassInfoA
CloseWindow
DispatchMessageA
GetDlgItem
GetClientRect
EndDialog
DestroyCaret
GetMenu
FillRect
CallWindowProcA
GetCaretPos
CreateWindowExA
clbcatq
CheckMemoryGates
SetSetupSave
SetupOpen
DllGetClassObject
ComPlusMigrate
ir50_32
DllGetClassObject
Sections
.text Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 801KB - Virtual size: 800KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ