Static task
static1
Behavioral task
behavioral1
Sample
700aa0c94fd10d4c8cafa5f6fdf37f63bc230a0d9e5d622f49c4f92627e8bdd8.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
700aa0c94fd10d4c8cafa5f6fdf37f63bc230a0d9e5d622f49c4f92627e8bdd8.exe
Resource
win10v2004-20231215-en
General
-
Target
700aa0c94fd10d4c8cafa5f6fdf37f63bc230a0d9e5d622f49c4f92627e8bdd8
-
Size
1.2MB
-
MD5
3795860ef0ba95985b3fbd2e16d551b3
-
SHA1
3b5bcad875b08d4bd47d19600a51d7b3a5c3b243
-
SHA256
700aa0c94fd10d4c8cafa5f6fdf37f63bc230a0d9e5d622f49c4f92627e8bdd8
-
SHA512
fc429fad61a8b09254f8f7ab4c1bd63ca761091b908beac123b3ecfe04aef28441b6e89dc6f1be070df81545fb3e6cd11e05a766d96cb8609ad08234c1e1272c
-
SSDEEP
24576:FVrDyMW8yvu2NYLYg1fLRaGhZIGXQFMlfW5A+YHYMam:v/iXoNhoGfIPFM43Mv
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 700aa0c94fd10d4c8cafa5f6fdf37f63bc230a0d9e5d622f49c4f92627e8bdd8
Files
-
700aa0c94fd10d4c8cafa5f6fdf37f63bc230a0d9e5d622f49c4f92627e8bdd8.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 640KB - Virtual size: 640KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 143KB - Virtual size: 143KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 13KB - Virtual size: 35KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 45KB - Virtual size: 45KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.enigma1 Size: 124KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.enigma2 Size: 284KB - Virtual size: 284KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE