Static task
static1
Behavioral task
behavioral1
Sample
d5a0ed8d68b07cf76c979b7a3594f0a5.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d5a0ed8d68b07cf76c979b7a3594f0a5.exe
Resource
win10v2004-20240226-en
General
-
Target
d5a0ed8d68b07cf76c979b7a3594f0a5
-
Size
3.5MB
-
MD5
d5a0ed8d68b07cf76c979b7a3594f0a5
-
SHA1
f17362875c93ef629e0c76e1a57bb562d0dad252
-
SHA256
c4d6e7972dd482c575e8b2a67b6cc35700675376733d456b560e4bc3d00f5afb
-
SHA512
ffb648e2c090b8ba21dcc0b17040507a095fc6a99fca93a92181c3f0a5040fc26134a0bff4333552ad0b218354d1db810e0c10a154186c17e5257e3ec0c645dc
-
SSDEEP
49152:bDerQZbd22erQZbd22erQZbd22erQZbd22erQZbd22erQZbd2MF:OrQZ4rQZ4rQZ4rQZ4rQZ4rQZR
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d5a0ed8d68b07cf76c979b7a3594f0a5
Files
-
d5a0ed8d68b07cf76c979b7a3594f0a5.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 144KB - Virtual size: 143KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 64KB - Virtual size: 63KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ