Static task
static1
Behavioral task
behavioral1
Sample
a35cef931a461535f31dd84b4080d151.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a35cef931a461535f31dd84b4080d151.exe
Resource
win10v2004-20240221-en
General
-
Target
a35cef931a461535f31dd84b4080d151
-
Size
1.0MB
-
MD5
a35cef931a461535f31dd84b4080d151
-
SHA1
7027d6f23b7b148727640c07f1bbb7216bff41f6
-
SHA256
cb8abda46bc607e2492e17d5e69bcb202264645bda874e8faf374372e19b81ba
-
SHA512
561dc429d43018cc88c188f13039f294e9da589a04516970281ceaaffebde114991da9df40629b8d9b60554cc41c4657f1e725ad8d555fe06a589471ba03a100
-
SSDEEP
24576:3PEpnBs1KQiiztvjYiTngwCOKPvErEI/WjeOADHH6s7q69WYWDWucq3uo2sA2s2h:3PY21K688ngwCOKPvErEI/WjyDHH6T6g
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a35cef931a461535f31dd84b4080d151
Files
-
a35cef931a461535f31dd84b4080d151.exe windows:4 windows x86 arch:x86
f4663edec7d09e7b07e03e024a1af00f
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetProcAddress
LoadLibraryA
CloseHandle
lstrlenA
GetCommandLineA
Sleep
gdi32
LineTo
GetDeviceCaps
CreateSolidBrush
PatBlt
BitBlt
SelectObject
msvcrt
wcschr
__getmainargs
exit
__p__commode
rand
_except_handler3
_XcptFilter
wcslen
wcstoul
_c_exit
_exit
toupper
__CxxFrameHandler
__setusermatherr
memmove
_controlfp
__set_app_type
_initterm
_adjust_fdiv
__p__fmode
user32
GetClientRect
DefWindowProcA
GetWindowRect
PostQuitMessage
SetWindowTextA
LoadIconA
MessageBoxA
ScreenToClient
SetFocus
EndPaint
EndDialog
Sections
.text Size: 512B - Virtual size: 432B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1.0MB - Virtual size: 2.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ