Static task
static1
Behavioral task
behavioral1
Sample
Trojan.Win32.Small.exe
Resource
win7-20240221-en
General
-
Target
Trojan.Win32.Small.cox-de00fe780f212cae5d248e9cfbcbb2864aa3a66e1c018dea2aa81bac770dab50
-
Size
97KB
-
MD5
1d5f8c24450948f2bfcc89c80b3d5f97
-
SHA1
8b7563cb9fc9e4d269a0fb77ab5a5045e4ad2317
-
SHA256
de00fe780f212cae5d248e9cfbcbb2864aa3a66e1c018dea2aa81bac770dab50
-
SHA512
681e70c8dab349f8bb9001b02805e54d39a0c1219774eabc4fdc782b06ad2c8991732a85453e9ff69ad1cf758a32111d6178bbc71664a255cb032bc9ea70b5b4
-
SSDEEP
1536:qiRRk7iOAYZBazwRhNKLYk4G7um6nrO0+BeTiiPMZlkCRjImd0:qQk7/FZh8UkRz6nrOLgOuEkC1Dd0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Trojan.Win32.Small.cox-de00fe780f212cae5d248e9cfbcbb2864aa3a66e1c018dea2aa81bac770dab50
Files
-
Trojan.Win32.Small.cox-de00fe780f212cae5d248e9cfbcbb2864aa3a66e1c018dea2aa81bac770dab50.exe windows:4 windows x86 arch:x86
46646950e38cdd1519d35c0c539d2b12
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
Sleep
SetErrorMode
ExitProcess
Sections
.text Size: 64KB - Virtual size: 68KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE