Static task
static1
Behavioral task
behavioral1
Sample
de873e9388c2a9a685ea9b6677ce6f98.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
de873e9388c2a9a685ea9b6677ce6f98.exe
Resource
win10v2004-20240226-en
General
-
Target
de873e9388c2a9a685ea9b6677ce6f98
-
Size
1.8MB
-
MD5
de873e9388c2a9a685ea9b6677ce6f98
-
SHA1
4fc74f03a2db08a90b13118d9e19eb65416e4c3c
-
SHA256
7687340fe292667101794fab6cebb70022e972779546ca100f1bd7aca84e9bb3
-
SHA512
a03fc821fd47d22528cc7625887e522aae30c3bad9eec2128fdfb78dba03bb649ef0f0772c1b03814c2f00aa65b53047867ff4762e3c03135a13fecbeb8998f4
-
SSDEEP
24576:g3TJLDsG3fp5bpYuQgp2s7PREfb/Glhm+s6MHVnPg4dqG/t:g3VrGOa1oe
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource de873e9388c2a9a685ea9b6677ce6f98
Files
-
de873e9388c2a9a685ea9b6677ce6f98.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.8MB - Virtual size: 1.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ