Static task
static1
Behavioral task
behavioral1
Sample
b731c27418414867d0eb3a5d75a22e06.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
b731c27418414867d0eb3a5d75a22e06.exe
Resource
win10v2004-20240226-en
General
-
Target
b731c27418414867d0eb3a5d75a22e06
-
Size
395KB
-
MD5
b731c27418414867d0eb3a5d75a22e06
-
SHA1
13b3badeada7bba0f332372523e0469422b4f215
-
SHA256
b5bd429e0a66a4f42d713adca86b44ba18cb910c963f3f9ec436b9e51e708ae3
-
SHA512
578eab0a919a1445a25eeb5c6a8fc511e3b356b6301415277f65abc65646d28adc6e6efff0dca87eba0be472ce834f0cbef4b0a1412e24debdd6ad5a11305af3
-
SSDEEP
12288:m2b8N1fa9nJXl2LWE90c5ALz9oQpkqNJ+Q0iPkOS:mKE1S9X2VOynaJ+QDvS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b731c27418414867d0eb3a5d75a22e06
Files
-
b731c27418414867d0eb3a5d75a22e06.exe windows:4 windows x86 arch:x86
4d8e9e06f8e51550e3e5089179e9846d
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Imports
kernel32
GetProcAddress
LoadLibraryA
GetModuleHandleA
Sections
Size: 287KB - Virtual size: 712KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 11KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 12KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 96KB - Virtual size: 96KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE