Static task
static1
Behavioral task
behavioral1
Sample
e227be993c9e58797b6189c652a585fb.exe
Resource
win7-20240221-en
General
-
Target
e227be993c9e58797b6189c652a585fb
-
Size
148KB
-
MD5
e227be993c9e58797b6189c652a585fb
-
SHA1
414475bbfc35e037b64e0811ee8e7d674e32b737
-
SHA256
24ee912caf5e4e0cebaac0f0f5422626b7859be66f1e1afca59a9e34564e5e48
-
SHA512
f73c43194ebafae44bb253b25bf47f38cd41cdbda5263e3580287e53103d0d0c3254159871ca1c2129ab290a2231e5c4f2bc36055ea763375d647e18f0c8859b
-
SSDEEP
1536:InpLaJGl7XX/j31w7NODnsqXffSyq+Vjz/+OxvpweD7SfldeNxqdaNBzFaDC2cTB:dJGlzPjlw7Nyfw+h/txBfWS5FapcU3M
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource e227be993c9e58797b6189c652a585fb
Files
-
e227be993c9e58797b6189c652a585fb.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.text Size: 27KB - Virtual size: 26KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: - Virtual size: 512B
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 17KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ocuokk Size: 89KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE