Static task
static1
Behavioral task
behavioral1
Sample
da1260193eab92329763d4b78444d685db4094bf7a10e0f1f2a54442410cfde3.exe
Resource
win7-20240221-en
General
-
Target
da1260193eab92329763d4b78444d685db4094bf7a10e0f1f2a54442410cfde3
-
Size
136KB
-
MD5
02ce546d4fac900a4726c900a800a3d0
-
SHA1
7705d498c9971eeb7cadd358f6b91b5ee7180043
-
SHA256
da1260193eab92329763d4b78444d685db4094bf7a10e0f1f2a54442410cfde3
-
SHA512
16c9c1f1972c22443bc3bccd9350d38868ea72b7d74cc910005f00b89a8d3023279a128f32adc3f600b51fd4e9c90b75b209c39798e4865a30b6bde48fbdfb01
-
SSDEEP
3072:nSDADeak7dJHB/AdGFkGxWgqjMlG7EPQC/NeL4N:nSsQLH5AdewME+r/f
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource da1260193eab92329763d4b78444d685db4094bf7a10e0f1f2a54442410cfde3
Files
-
da1260193eab92329763d4b78444d685db4094bf7a10e0f1f2a54442410cfde3.exe windows:4 windows x86 arch:x86
d62ab77434adac1b7f4219eeeaf1d72c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvcrt
_except_handler3
memcpy
fclose
fwrite
fopen
strcat
strlen
exit
strstr
Sections
.text Size: 135KB - Virtual size: 136KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE