Static task
static1
Behavioral task
behavioral1
Sample
466aac6ffc5f07a1545bd69d45d30ca781570aba4a0ef45b592bb5aee92f91c5.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
466aac6ffc5f07a1545bd69d45d30ca781570aba4a0ef45b592bb5aee92f91c5.exe
Resource
win10v2004-20240226-en
General
-
Target
466aac6ffc5f07a1545bd69d45d30ca781570aba4a0ef45b592bb5aee92f91c5
-
Size
593KB
-
MD5
a87ee49ce1a1e3e91ce2a64ce7afe4f6
-
SHA1
7353f88065dcea94df6d3e1342240a492c2cba7e
-
SHA256
466aac6ffc5f07a1545bd69d45d30ca781570aba4a0ef45b592bb5aee92f91c5
-
SHA512
1d288436e62d27e806daa004c6f8a6cfc961e6cd65a22a20b6e59c0b63db40330a988262f41cafb0cad5999149929c5cd3b238f9e038dd9b837b98261779f5e0
-
SSDEEP
12288:S0KXtBO2yxr6o049ArrqJtctQg5cNf5zOHWdwLKJUYrnXQTsnAh:W9IWrrqJOtx5Q5vdwUUY7ATlh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 466aac6ffc5f07a1545bd69d45d30ca781570aba4a0ef45b592bb5aee92f91c5
Files
-
466aac6ffc5f07a1545bd69d45d30ca781570aba4a0ef45b592bb5aee92f91c5.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
Kux<-t1u Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 579KB - Virtual size: 579KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
(a8}E Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ