Static task
static1
Behavioral task
behavioral1
Sample
dc06ac13dbaa78b63d9d5ed3bc320325.exe
Resource
win7-20240221-en
General
-
Target
dc06ac13dbaa78b63d9d5ed3bc320325
-
Size
85KB
-
MD5
dc06ac13dbaa78b63d9d5ed3bc320325
-
SHA1
da476b6368b98df50d8198b8d5ad8370fb115511
-
SHA256
7b9b1a64a811390acb3384677420ed0508176891723708ac43cf980bf40c8701
-
SHA512
5deb542d64711a86f71bfaa1fc53a3c5b5c7165d2135a49366ba575bd13b326caa491075a5ad13485bbe77b3680a3ed83f692fffec643d88f27c5545b4d4842a
-
SSDEEP
1536:wC1UFncLzy+yYoE2qhpmryEnJwcY0vFnh:j1UFnMzy+YwhpmryEnJwcY0Nh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dc06ac13dbaa78b63d9d5ed3bc320325
Files
-
dc06ac13dbaa78b63d9d5ed3bc320325.exe windows:4 windows x86 arch:x86
1ae45225e2af85474a4b4e7ddaa5d24b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
WriteFile
CreateFileA
LockResource
LoadResource
SizeofResource
FindResourceA
FreeLibrary
GetProcAddress
LoadLibraryExA
lstrcmpiA
DeleteFileA
SetFileAttributesA
lstrcatA
GetStartupInfoA
ExitProcess
CloseHandle
GetModuleHandleA
lstrcpyA
GetLastError
SetLastError
GetSystemDirectoryA
GetCurrentDirectoryA
GetFileAttributesA
GetDriveTypeA
GetUserDefaultLangID
lstrcpynA
lstrlenA
CreateDirectoryA
EnumResourceNamesA
SetCurrentDirectoryA
GetCommandLineA
RemoveDirectoryA
user32
CharNextA
LoadStringA
wsprintfA
MessageBoxA
advapi32
RegOpenKeyExA
RegCloseKey
RegFlushKey
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA
RegQueryValueExA
ole32
CoInitialize
CoUninitialize
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 260B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 60KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ