Static task
static1
Behavioral task
behavioral1
Sample
d8b23244597e60597eb5359b26b92bdb3ab1359985da190c5852fc824038f15a.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d8b23244597e60597eb5359b26b92bdb3ab1359985da190c5852fc824038f15a.exe
Resource
win10v2004-20231215-en
General
-
Target
d8b23244597e60597eb5359b26b92bdb3ab1359985da190c5852fc824038f15a
-
Size
716KB
-
MD5
fb83c76a5af6949dde65a8adaa264124
-
SHA1
8ffcefa0cc22d36de8edb559424674cb9bf88617
-
SHA256
d8b23244597e60597eb5359b26b92bdb3ab1359985da190c5852fc824038f15a
-
SHA512
9e4645b06ecf75943c0b1e94d7bfc6d4ecfdc4b0f264ca9a3f571c7be00811c6b9bdf37ef21a3585390a23ab99216a3725dcfb67aa85f87519779e07f1a40701
-
SSDEEP
12288:SFoO3mVQxbmbYwptvJVsVI1SVCPBZKoNgKa5PoCDQXTDaIYgL0k:ShTxlct7A8+CZZKDwHHaI
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource d8b23244597e60597eb5359b26b92bdb3ab1359985da190c5852fc824038f15a
Files
-
d8b23244597e60597eb5359b26b92bdb3ab1359985da190c5852fc824038f15a.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 706KB - Virtual size: 705KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ