sfxcab.pdb
Static task
static1
Behavioral task
behavioral1
Sample
9789371e9247ebf63702fdd5d40c9fef.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
9789371e9247ebf63702fdd5d40c9fef.exe
Resource
win10v2004-20231215-en
General
-
Target
9789371e9247ebf63702fdd5d40c9fef
-
Size
5KB
-
MD5
9789371e9247ebf63702fdd5d40c9fef
-
SHA1
f50e78ead10978f38d50a8071998891ad5af44fa
-
SHA256
ddb4b881853680e8bb9cc9a1d71fdb800750c59f5f7fd06d1851cd60b52ab3e6
-
SHA512
aeedd8955da70924983660c7653f2d04cec399440ac16ad4a45da5877ed3623d69d0b0f661cc239d496ed785b079e31088c622d736142741a543c41dd80fc256
-
SSDEEP
48:adLFIyISSa/WrnpuvlOoEjtZUW0yWjvAuBRezlnTmZAsVxfAc5VXau+1siS2svs:Xy10rnpuKUFedTmZAsRH0sbk
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 9789371e9247ebf63702fdd5d40c9fef
Files
-
9789371e9247ebf63702fdd5d40c9fef.exe windows:5 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
PDB Paths
Sections
.text Size: 56KB - Virtual size: 55KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 70KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1.5MB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ