Static task
static1
Behavioral task
behavioral1
Sample
ad3c8c58ef44c77209599ac731419adfc0bba5d423e272ee7e5f83787d9d1ab8.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ad3c8c58ef44c77209599ac731419adfc0bba5d423e272ee7e5f83787d9d1ab8.exe
Resource
win10v2004-20240221-en
General
-
Target
ad3c8c58ef44c77209599ac731419adfc0bba5d423e272ee7e5f83787d9d1ab8
-
Size
2.9MB
-
MD5
4c7f84ec964ac32a50b21fbfb91086fc
-
SHA1
2cd156b6211deae0e7d0936c9763b3d9ebd114e1
-
SHA256
ad3c8c58ef44c77209599ac731419adfc0bba5d423e272ee7e5f83787d9d1ab8
-
SHA512
28ea989070dc654e78f64a9470b5cf0b82a7e39285162ca8c992808902eac4f090d2781269fc1394facba7f146571909c9fbf96d6a7f99cd6ae62ae68d627c06
-
SSDEEP
49152:sKIYpCl4OUPePZrk/XrxmuoNoRXEKm6ESY0/qCsuz2ytl+tWoJ5uSX3Bk035Q0rh:LIYpFmuoN4wEqCziyCtn
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ad3c8c58ef44c77209599ac731419adfc0bba5d423e272ee7e5f83787d9d1ab8
Files
-
ad3c8c58ef44c77209599ac731419adfc0bba5d423e272ee7e5f83787d9d1ab8.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 2.1MB - Virtual size: 2.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 457KB - Virtual size: 457KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 185KB - Virtual size: 464KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data1 Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 45KB - Virtual size: 45KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 114KB - Virtual size: 114KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.newimp Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE