Static task
static1
Behavioral task
behavioral1
Sample
fac30bb1b47153b3d5ae5a86f5dafc6aaac121e57610a65b616311d75f918275.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
fac30bb1b47153b3d5ae5a86f5dafc6aaac121e57610a65b616311d75f918275.exe
Resource
win10v2004-20240226-en
General
-
Target
fac30bb1b47153b3d5ae5a86f5dafc6aaac121e57610a65b616311d75f918275
-
Size
114KB
-
MD5
5c71ecfc62ac79ddc54ec49d7a50f072
-
SHA1
8d4df46c9dafdee176498f90625338381957938b
-
SHA256
fac30bb1b47153b3d5ae5a86f5dafc6aaac121e57610a65b616311d75f918275
-
SHA512
8cdc3a1a2d6df8f7191e807f3c47148e14929a3d763253e2bd0f79938e3da34f2d0c8c702478e5381619bb65f5901025f77042288af020ee758355301c86b8ef
-
SSDEEP
3072:crjr8aLKEZ9hJcAx9VHWkHBFqWK7bBq7/g+NCY2ERxFP:Er8a+eGAx2LWK7b0o+NCY2aFP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fac30bb1b47153b3d5ae5a86f5dafc6aaac121e57610a65b616311d75f918275
Files
-
fac30bb1b47153b3d5ae5a86f5dafc6aaac121e57610a65b616311d75f918275.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.text Size: - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.udata Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 182B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 108KB - Virtual size: 112KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE