Static task
static1
Behavioral task
behavioral1
Sample
c15964c965ed788a725eafff04c12bd4.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
c15964c965ed788a725eafff04c12bd4.exe
Resource
win10v2004-20240226-en
General
-
Target
c15964c965ed788a725eafff04c12bd4
-
Size
380KB
-
MD5
c15964c965ed788a725eafff04c12bd4
-
SHA1
40c46a957f50280517fb2474788ffc68bb337bb7
-
SHA256
ff95848775adf1e5917c548c198204d3da89856cb6e003ebd94e4185028fb717
-
SHA512
2fe91a32ae2cf446f99653f557c756d37253eb3a12a3bcad236e88a5b40f7f658f4390dfc7c654d16b57803342f0b95060ec7c979e2ebc3623bb7735a5d7f3e2
-
SSDEEP
6144:Em5CLtzFq/D8rKJ3FthQXCImN0w2VMHpvN98sUIW3cAC0Mxt0GVSA3Mk:Em5C7HWfQyImN0w2UplDU3P07wAr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c15964c965ed788a725eafff04c12bd4
Files
-
c15964c965ed788a725eafff04c12bd4.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.nsp0 Size: - Virtual size: 940KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp1 Size: 380KB - Virtual size: 384KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp2 Size: - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE