Static task
static1
Behavioral task
behavioral1
Sample
b810c7441aaf06b7a4c1ac8b181887bc.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b810c7441aaf06b7a4c1ac8b181887bc.exe
Resource
win10v2004-20240226-en
General
-
Target
b810c7441aaf06b7a4c1ac8b181887bc
-
Size
24KB
-
MD5
b810c7441aaf06b7a4c1ac8b181887bc
-
SHA1
534a1873df950d3ab4d61e31fdeeb01ce0951371
-
SHA256
e628d4f04fa8d1539b86eaaa745169f9d74c8f2e57071cff66dc602ab7aa237d
-
SHA512
aa514161cd4193c8856b2eedc326e9d24c482b74ab1c235f8be3b85b5be0bcac390833219ec206121ce4bacc64add96ccf20d7c3e418b692bf9790877603a444
-
SSDEEP
192:GdV5xdFi9yeD2h0ET79kyeD2jLAbkfxno/zyeD2g:GdV5xS9s5T79ksHfxno/zs
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b810c7441aaf06b7a4c1ac8b181887bc
Files
-
b810c7441aaf06b7a4c1ac8b181887bc.exe windows:4 windows x86 arch:x86
f3054cf49a5380eb8b2de2cd340c9b62
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
m3skin
ord5
Sections
.text Size: 4KB - Virtual size: 20B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 132B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ