Static task
static1
Behavioral task
behavioral1
Sample
131c467cce577a6f9c63f6c5aa32f4d57ab0028e60c35630b52fb36179cc8400.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
131c467cce577a6f9c63f6c5aa32f4d57ab0028e60c35630b52fb36179cc8400.exe
Resource
win10v2004-20240226-en
General
-
Target
131c467cce577a6f9c63f6c5aa32f4d57ab0028e60c35630b52fb36179cc8400
-
Size
626KB
-
MD5
955ab8ca00c3619c4b5b80668acf399d
-
SHA1
5a1087320acc8ab4f193e41c5947efe5c135eb65
-
SHA256
131c467cce577a6f9c63f6c5aa32f4d57ab0028e60c35630b52fb36179cc8400
-
SHA512
3fa69c3f4911c05d4127eedb394d509605f12e14c646d8d465e62a0b5e111321864b0c363c631c2579fe94c7d377ad9e9b490553c4f3176494e187d4b1ecfbc1
-
SSDEEP
12288:sa5WGSTlkKnX8GPW+1HRFFFCSYotiSkgF8PWfROMyn:kGI6G+wHFVYEks6
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 131c467cce577a6f9c63f6c5aa32f4d57ab0028e60c35630b52fb36179cc8400
Files
-
131c467cce577a6f9c63f6c5aa32f4d57ab0028e60c35630b52fb36179cc8400.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 618KB - Virtual size: 617KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ