Static task
static1
Behavioral task
behavioral1
Sample
d4bd418da3d3a1a74dc5d4345b59751a.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d4bd418da3d3a1a74dc5d4345b59751a.exe
Resource
win10v2004-20240226-en
General
-
Target
d4bd418da3d3a1a74dc5d4345b59751a
-
Size
714KB
-
MD5
d4bd418da3d3a1a74dc5d4345b59751a
-
SHA1
c0d0ec6eb6416865216b4d78109ce30a3c344a37
-
SHA256
4574f11834e8673f65d4d815d24bea6ae18a6f373adc4a1d6df606e0cfbaf21d
-
SHA512
61f960e32798ffc30bba006d5cea1c3373fd978e2806abe2cbc1fbe5eba19f165e9271727152d0c6f5c09c1f81fb185b5a459c8ef853376cc579f533dbd7088c
-
SSDEEP
12288:CxGz3mDUXfy264kSxOxVOidpBRXjIjbOPnP9:C23HHkSxOZdHRt9
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d4bd418da3d3a1a74dc5d4345b59751a
Files
-
d4bd418da3d3a1a74dc5d4345b59751a.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 318KB - Virtual size: 317KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 103KB - Virtual size: 103KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 14KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 242KB - Virtual size: 242KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 31KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ