Static task
static1
Behavioral task
behavioral1
Sample
b967bda9da5d35af3dbe13500117a9c1.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b967bda9da5d35af3dbe13500117a9c1.exe
Resource
win10v2004-20240226-en
General
-
Target
b967bda9da5d35af3dbe13500117a9c1
-
Size
50KB
-
MD5
b967bda9da5d35af3dbe13500117a9c1
-
SHA1
b2d9393f892815b2977bdc5263b4f261311aebe4
-
SHA256
c6e9dbb376614ae9a388944f74a4ede9fcd23888528638f5128a90d9488d610d
-
SHA512
1459fe7af8105fc3b59048d6409c8ccf22179ed57cf6ea1f8655648572d5124c1375f367fd296a997226d0d8e4b8addb63271eee20e0f49636d26b4b208b5461
-
SSDEEP
768:nTrfOQfTwZvZSF/REw5xlylKXqs2LHmN/P0ffywoeaO:p8vZbwt8KVOM30fKwMO
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b967bda9da5d35af3dbe13500117a9c1
Files
-
b967bda9da5d35af3dbe13500117a9c1.exe windows:4 windows x86 arch:x86
719ac44699879302779f01b626a74fea
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCurrentDirectoryA
CompareStringA
GetProcAddress
VirtualAlloc
GetTickCount
LoadLibraryA
user32
TranslateMessage
DispatchMessageA
GetMessageA
oleaut32
VarRound
ole32
CreateObjrefMoniker
Sections
.text Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 36KB - Virtual size: 35KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ