PzxO.pdb
Static task
static1
Behavioral task
behavioral1
Sample
39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292.exe
Resource
win10v2004-20240226-en
General
-
Target
39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292
-
Size
744KB
-
MD5
6e094079b963390ca476d5735d8d2c21
-
SHA1
41b3089b77841f049d0c090fee62927c71d30326
-
SHA256
39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292
-
SHA512
2ef897019b77b6e302038e1e1b884aab1f95d7a19ef39924d55e18d3570468b209276ec342393e8250db7cd530e4778f26e4a1232eb4fc603bfda8587bb85ad6
-
SSDEEP
12288:Fd1JsJ6SOF1Sh2iNwzW+T9s3YK723POalXBv5uFZJvrsOucDxu5jfP93F/1PcEa6:Fdxw1GzW+Ty3323PN7v5+vgjH9VNEELo
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292
Files
-
39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 728KB - Virtual size: 727KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ