Static task
static1
Behavioral task
behavioral1
Sample
b4d3b599929d07b9baa51b5649a9c075.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b4d3b599929d07b9baa51b5649a9c075.exe
Resource
win10v2004-20240226-en
General
-
Target
b4d3b599929d07b9baa51b5649a9c075
-
Size
184KB
-
MD5
b4d3b599929d07b9baa51b5649a9c075
-
SHA1
28b1df9a9c599266c50f95bef8780ba33bc95e88
-
SHA256
28acb02c3aeeb324232b882218d62ae404125e80a2015a312131a766a8c66508
-
SHA512
6e13421ee7d2ef0c9376ef71718b7b5d6228bc1e9e4666a1e2959dc19a6a4d209724bcb4bee1584b2c69dfe1cf4f2221fdd4ffbd2f78db7a611affba6f7d9aec
-
SSDEEP
3072:IfZbonQOVzAmumjYMYpsD8AYpOnWt8XltkSxcePKaylP3pFU:Ifto/smuTMwsD841sCylP3pF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b4d3b599929d07b9baa51b5649a9c075
Files
-
b4d3b599929d07b9baa51b5649a9c075.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 172KB - Virtual size: 168KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ