Static task
static1
Behavioral task
behavioral1
Sample
2c0551904aa8a19d6c2e6058b6dba86f9a6638c452887ff19e01abe907afba39.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2c0551904aa8a19d6c2e6058b6dba86f9a6638c452887ff19e01abe907afba39.exe
Resource
win10v2004-20240226-en
General
-
Target
2c0551904aa8a19d6c2e6058b6dba86f9a6638c452887ff19e01abe907afba39
-
Size
592KB
-
MD5
b63b90d3af7597a04d5ffe3d9063c7b8
-
SHA1
321be5044cd8243232920dd34657c0cc4ed8fc0f
-
SHA256
2c0551904aa8a19d6c2e6058b6dba86f9a6638c452887ff19e01abe907afba39
-
SHA512
860ff673136c16c2cee0bf66705fd0342e29fbfa61886a507862d735032fc6d06e96151a491022801fe2981bd90f1b20375c6efa60a1a0a94bad212c57675473
-
SSDEEP
12288:/fNYNjOGJ/USJi02fxLCiWsJBnn43wWuGdj64ZsBLHFz/Hd3t1X:nyNyDSJiJksJBnn7lisBRrhX
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 2c0551904aa8a19d6c2e6058b6dba86f9a6638c452887ff19e01abe907afba39
Files
-
2c0551904aa8a19d6c2e6058b6dba86f9a6638c452887ff19e01abe907afba39.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
_%W}{6u Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 579KB - Virtual size: 578KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Jdf`=f Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ