IxKx.pdb
Static task
static1
Behavioral task
behavioral1
Sample
d56e9061e7f6df6e094d1582d817c381f8ce9ac6c3925cba5da96464487a18b7.exe
Resource
win7-20240221-en
General
-
Target
d56e9061e7f6df6e094d1582d817c381f8ce9ac6c3925cba5da96464487a18b7.zip
-
Size
608KB
-
MD5
2d585ff868f510f40c9cbf0770e4808f
-
SHA1
bd46d53f261c7c5db036f37554cf862b556ee880
-
SHA256
64dfa8fa8cf1bb8142635b93f4248696e8c184401cd1ef4a966421e9f9ce0f45
-
SHA512
90478dd2dc8ee038349a21dd1206b932d0cbe400e099d26740939e3359c1d02bd6588e6b4b7a047e152499cfceb65b7ba91c32c5c337695252757ca85ac9f846
-
SSDEEP
12288:/2MQQD0v6KXRSShCAusH9e9WmVm821R/z2R2XT6lEN+XEp+BFrCM/4nVepryzx:BQp6K8mzxkdVm821ZMUNJ+B1gk0x
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/d56e9061e7f6df6e094d1582d817c381f8ce9ac6c3925cba5da96464487a18b7.exe
Files
-
d56e9061e7f6df6e094d1582d817c381f8ce9ac6c3925cba5da96464487a18b7.zip.zip
Password: infected
-
d56e9061e7f6df6e094d1582d817c381f8ce9ac6c3925cba5da96464487a18b7.exe.exe windows:4 windows x86 arch:x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 614KB - Virtual size: 613KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 36KB - Virtual size: 35KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ