Static task
static1
Behavioral task
behavioral1
Sample
dfba00a78e533093c49e03096bc38c4a7bd42ab69595ea074caae3e06e36fab4.exe
Resource
win7-20240319-en
General
-
Target
dfba00a78e533093c49e03096bc38c4a7bd42ab69595ea074caae3e06e36fab4
-
Size
65KB
-
MD5
6686079dd5b6eb537817dc1b240a2c51
-
SHA1
1cfa433c05165518f9e14d9b6b0c1a438018f40d
-
SHA256
dfba00a78e533093c49e03096bc38c4a7bd42ab69595ea074caae3e06e36fab4
-
SHA512
70d6d6e857f3526a867c1b714e5b57dbc1f11c2935e1190ec1831112a421b78ff525bb02f175e7099929288a0ab2218dd6d7fb5481a0e4604809c0b44a24875d
-
SSDEEP
1536:xwKe0v4v0iakUxxt4ka/imrSp84zIO5KI/lERvv8yo+vWcotp32op:xPWPyt7aKmkMYKI/MEv+vWRtwop
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource dfba00a78e533093c49e03096bc38c4a7bd42ab69595ea074caae3e06e36fab4
Files
-
dfba00a78e533093c49e03096bc38c4a7bd42ab69595ea074caae3e06e36fab4.exe windows:4 windows x86 arch:x86
46646950e38cdd1519d35c0c539d2b12
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
Sleep
SetErrorMode
ExitProcess
Sections
.text Size: 64KB - Virtual size: 68KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE