SXXA.pdb
Static task
static1
Behavioral task
behavioral1
Sample
64032_7832.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
64032_7832.exe
Resource
win10v2004-20240226-en
General
-
Target
06194b1533efb3f436b2055a5fe8b65715ce5e8b.rar.tar.gz
-
Size
592KB
-
MD5
e603cba1440c5452edc422f1cc30ee7d
-
SHA1
1eb85ef930c6928126d7aaa2b3d43221aae9b0ca
-
SHA256
3f29625155856423f035b542c1b0095c4fded30e4582d36654f4b7b447db8752
-
SHA512
807740f0b424b0f942885c4108fe2b0b994cafb1d39b8da044a04d8a395cc08a2717e0963493987910726aa6c1fb7b65c0021a8f521b2a82ccc52fff229f1e89
-
SSDEEP
12288:7kImlsH6gM5/3cvY6xz2L/Itkz8BGVTSGNYMsg4H/2CQEb4:7Gspw/Z4q8aSGNYMsF2CG
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack002/64032_7832.exe
Files
-
06194b1533efb3f436b2055a5fe8b65715ce5e8b.rar.tar.gz.zip
Password: infected_te_report
-
06194b1533efb3f436b2055a5fe8b65715ce5e8b.rar.rar
Password: infected_te_report
-
64032_7832.exe.exe windows:4 windows x86 arch:x86
Password: infected_te_report
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 601KB - Virtual size: 600KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ