Static task
static1
Behavioral task
behavioral1
Sample
d360eef6f0fdf31aa4f7e3334af49645.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
d360eef6f0fdf31aa4f7e3334af49645.exe
Resource
win10v2004-20240226-en
General
-
Target
d360eef6f0fdf31aa4f7e3334af49645
-
Size
43KB
-
MD5
d360eef6f0fdf31aa4f7e3334af49645
-
SHA1
0dcb7b02c9b527b4b3e9b489dd77e753c2d96186
-
SHA256
01394647e80ebbe7ab7856065182e1dc3ed18f27f6bcf870cc82f2ad40e74f24
-
SHA512
6ead25acbabd6a7c46c54fad9e976d5975cf25614c4f7e5ed689956215cfd1105678985c54d02ec4248cfbecb8481826275605152876f3f2270194404ebb7a20
-
SSDEEP
768:5+ymxaI/2ScXi5/jDa3Ndz2eMR5gp3kyZNfDglQCwyJAuzAecSynVBzOEvlkHBqd:5bmxnOv8jDa3NdzlU7WDgNPpMecSyBz7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d360eef6f0fdf31aa4f7e3334af49645
Files
-
d360eef6f0fdf31aa4f7e3334af49645.exe windows:5 windows x86 arch:x86
8f80d96935617f1fea4e4fb5c73829f6
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrlenA
CreateThread
EnterCriticalSection
lstrcmpiA
SetEndOfFile
ExpandEnvironmentStringsW
GetModuleHandleA
UnmapViewOfFile
CreateProcessW
lstrcpynW
CreateEventW
SetLastError
SetFileAttributesW
SetEvent
MultiByteToWideChar
FindClose
GetCurrentThread
GetSystemTime
DisconnectNamedPipe
SetThreadPriority
CreateFileMappingW
WriteFile
CopyFileW
MoveFileExW
GetModuleFileNameA
FlushFileBuffers
ReleaseMutex
lstrcatW
CreateMutexW
GetDriveTypeW
FindFirstFileW
user32
FindWindowExW
GetKeyState
Sections
.uhsx Size: 35KB - Virtual size: 54KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.mnsdcb Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tgl Size: 4KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ