Static task
static1
Behavioral task
behavioral1
Sample
25f94b9d5619ede278e2dae14c151d1a3c2c97bc59333eaf2f1e1496e5136481.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
25f94b9d5619ede278e2dae14c151d1a3c2c97bc59333eaf2f1e1496e5136481.exe
Resource
win10v2004-20240226-en
General
-
Target
25f94b9d5619ede278e2dae14c151d1a3c2c97bc59333eaf2f1e1496e5136481
-
Size
215KB
-
MD5
83468bcd58ac9ca9c2cad625cc4bb257
-
SHA1
4ca482d80e9399a7e1cfce9e99959d46907731e9
-
SHA256
25f94b9d5619ede278e2dae14c151d1a3c2c97bc59333eaf2f1e1496e5136481
-
SHA512
d4d21388cc88c389b337ffd9b15565def48eeed13573f0ed42052d7c7b8ed47416e52074da4b353cb06c0730db88b2620d0aa7d5d315a71a9db66b437708be5a
-
SSDEEP
3072:8no5pcLYHxLbSETU4rKNi7vNRew7HlqrpAEg:zpzbSETU4rKNi7lUUGAt
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 25f94b9d5619ede278e2dae14c151d1a3c2c97bc59333eaf2f1e1496e5136481
Files
-
25f94b9d5619ede278e2dae14c151d1a3c2c97bc59333eaf2f1e1496e5136481.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 140KB - Virtual size: 140KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 6KB - Virtual size: 39.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 36KB - Virtual size: 35KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 31KB - Virtual size: 31KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ