Static task
static1
Behavioral task
behavioral1
Sample
d174a885ddd228e34d9e7086b97062694c0f828edc0d4cc37150519407e09f5b.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
d174a885ddd228e34d9e7086b97062694c0f828edc0d4cc37150519407e09f5b.exe
Resource
win10v2004-20231222-en
General
-
Target
d174a885ddd228e34d9e7086b97062694c0f828edc0d4cc37150519407e09f5b.exe
-
Size
883KB
-
MD5
e971fbdaaa67de4306e72738e3a10392
-
SHA1
bac689957e126c88435f22ef0b0df10c3b52e1fc
-
SHA256
d174a885ddd228e34d9e7086b97062694c0f828edc0d4cc37150519407e09f5b
-
SHA512
bee73df1600df0184876d86f16193bd8c86353ff2608524debf84fad1a52730dfab91186bea5e89d60338f6ee0f007f2ffe2cd11ec9598d4245a3043a023ca34
-
SSDEEP
12288:Wj6mRlmDKClMfkrPEBuGKw3f+s2geR3VJgx3ZGBnxxSmOMrXJK45d1b:W2a4KCycrPQIo+aePmx6nxxSm1J11
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d174a885ddd228e34d9e7086b97062694c0f828edc0d4cc37150519407e09f5b.exe
Files
-
d174a885ddd228e34d9e7086b97062694c0f828edc0d4cc37150519407e09f5b.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
mscoree
_CorExeMain
Sections
.text Size: 877KB - Virtual size: 877KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ