Static task
static1
Behavioral task
behavioral1
Sample
a2c6d851a502187a0146351ba636c1d1.exe
Resource
win7-20240221-en
General
-
Target
a2c6d851a502187a0146351ba636c1d1
-
Size
150KB
-
MD5
a2c6d851a502187a0146351ba636c1d1
-
SHA1
1a865903b5e20020083ef5d6dc99292b58024e5c
-
SHA256
1b77cac1dad528685fb7f2f19ddff24e6080a0024039671db5774b4a7ffbf68c
-
SHA512
b79432127887a718f8707e5e767296b11f2cc8ff55da513f3bcf5c93b79f4bea9d9e5135c2d024ac05ac3fb7543133a07c22e270ed00761a0955f6b0374b4200
-
SSDEEP
3072:/vVi7IdvHF/PG5iKg2ZdUZICiuErVCU/cU3cedK9zpDqi4:/WIFl/u5iwZdUZKuuFxK9zxqr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource a2c6d851a502187a0146351ba636c1d1
Files
-
a2c6d851a502187a0146351ba636c1d1.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.pytt9f Size: 1KB - Virtual size: 57KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.wjcybo Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.v9nncv Size: - Virtual size: 164KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.debug Size: - Virtual size: 3.0MB
.loader Size: - Virtual size: 412KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 147KB - Virtual size: 148KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE