Static task
static1
Behavioral task
behavioral1
Sample
9885de68439f4a406df4a8cacfeff7d1.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
9885de68439f4a406df4a8cacfeff7d1.exe
Resource
win10v2004-20231215-en
General
-
Target
9885de68439f4a406df4a8cacfeff7d1
-
Size
84KB
-
MD5
9885de68439f4a406df4a8cacfeff7d1
-
SHA1
9194d7452d4397fe98bdecd76de6c1b83c0552f4
-
SHA256
2affdc1b1d11a5a96dd6ad4a104f88950ed775843780bf92caa17f3024e4e3de
-
SHA512
da531893b499ef182fc336279d67c9aa7f89e16f10c5702d7ad3060d615f86ffcf96250533389bc05474126313826554d5d0feb284fb638d8622aaf9efc4d0ad
-
SSDEEP
1536:qdyQ4URf+25/jm9pNlrbzcVwLnrbLn5GcxVapEvR76L5mIiQl/YwZD:qcQ4URf+25YNVSIrDLapRdmQl/YwZ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 9885de68439f4a406df4a8cacfeff7d1
Files
-
9885de68439f4a406df4a8cacfeff7d1.exe windows:4 windows x86 arch:x86
a7516918faf70bf55f0d5f187e9b0662
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetEvent
DeleteFileA
CancelWaitableTimer
CloseHandle
WaitForSingleObjectEx
SetWaitableTimer
WriteFile
CreateThread
CreateWaitableTimerA
ReleaseMutex
GetTickCount
VirtualQuery
VirtualProtect
SetFilePointer
WaitForSingleObject
ExitProcess
CreateEventA
SuspendThread
user32
FindWindowA
RegisterClassA
GetSystemMetrics
CreateDialogParamA
GetClassInfoExA
comdlg32
GetSaveFileNameA
GetFileTitleA
PrintDlgExA
FindTextA
CommDlgExtendedError
Sections
.text Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 64KB - Virtual size: 63KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ