Static task
static1
Behavioral task
behavioral1
Sample
bc15a0e88f0ad85f007af374ea199649.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
bc15a0e88f0ad85f007af374ea199649.exe
Resource
win10v2004-20240226-en
General
-
Target
bc15a0e88f0ad85f007af374ea199649
-
Size
769KB
-
MD5
bc15a0e88f0ad85f007af374ea199649
-
SHA1
760610df9e044e97a98a8bc07ee93f57c52d7db5
-
SHA256
6a8c5faa9c9caf8cb0398c110f0b7a8e650da1eacb973de57d6748f504113327
-
SHA512
2256017684214e2b1373f37031d900f3ebaa507a74cc9e1b193f32db858cb537fc249c186b8c28ca57d5d626a83cee02a013a29a2a5f4fbe2cb7a7cb86fd68d9
-
SSDEEP
24576:RvAfKKv67xakC+Q/xl//9gEQMGwvTsJyF:Rvqbv6dPBSqwL
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bc15a0e88f0ad85f007af374ea199649
Files
-
bc15a0e88f0ad85f007af374ea199649.exe windows:4 windows x86 arch:x86
b18ce2f19dc8ab446c43f8b4a486ea4c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateMutexA
GetVersion
GetFileSize
CancelIo
GetStdHandle
LoadLibraryA
HeapSize
RemoveDirectoryW
HeapDestroy
MapViewOfFile
SetLastError
RemoveDirectoryW
GetTickCount
GetStartupInfoA
CreateFileA
ReleaseSemaphore
ReleaseSemaphore
ReadConsoleA
ReleaseMutex
SetLastError
VirtualProtect
FatalExit
CreateHardLinkA
DeleteFileW
CreateDirectoryW
uxtheme
DrawThemeBackground
CloseThemeData
GetWindowTheme
OpenThemeData
DrawThemeEdge
SetWindowTheme
GetThemeTextMetrics
GetThemeTextExtent
GetThemeBool
GetThemeColor
CloseThemeData
IsThemeActive
GetThemeSysSize
msports
ComDBOpen
ComDBReleasePort
ComDBClaimPort
ComDBClose
Sections
.text Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 761KB - Virtual size: 760KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE