Static task
static1
Behavioral task
behavioral1
Sample
361b53f4b3e887b963bd607d994f9f42344b39e871b1142c8e56ff7182e4c96c.exe
Resource
win7-20240215-en
General
-
Target
361b53f4b3e887b963bd607d994f9f42344b39e871b1142c8e56ff7182e4c96c.zip
-
Size
1.2MB
-
MD5
d3fefc0642527908d1bbb294c988cdf9
-
SHA1
0fb63010b165aea76f0e804bc9770fdc09913879
-
SHA256
6afe66dbf42c2bbcf05dc9075f49a9fd1c858a974479199b275bd42cfb29381c
-
SHA512
016a6412ebd33d80732d1c5b9120480e8e575380559bd8bf9705e8dccabfe30448a167b7a0cdab95696324edc46aa24cd5ea252304fc11c9fabf2d100cf970d9
-
SSDEEP
24576:Umga5oLsIEuCkrbWuO7OCBUnBf+/LbPox5zZua+XR:NgdsIjFrbWuO7OPnA/Lez8agR
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/361b53f4b3e887b963bd607d994f9f42344b39e871b1142c8e56ff7182e4c96c.exe
Files
-
361b53f4b3e887b963bd607d994f9f42344b39e871b1142c8e56ff7182e4c96c.zip.zip
Password: infected
-
361b53f4b3e887b963bd607d994f9f42344b39e871b1142c8e56ff7182e4c96c.exe.exe windows:4 windows x86 arch:x86
Password: infected
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 85KB - Virtual size: 192KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: - Virtual size: 120KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 1024B - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 115KB - Virtual size: 120KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 175KB - Virtual size: 2.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 908KB - Virtual size: 912KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE