Static task
static1
Behavioral task
behavioral1
Sample
b9503635ef25a584476f71aa4a010b3978ee04e8a956e810b71b05bbef32bb07.exe
Resource
win7-20240221-en
General
-
Target
b9503635ef25a584476f71aa4a010b3978ee04e8a956e810b71b05bbef32bb07.zip
-
Size
6.8MB
-
MD5
3ca936b1de4389177e6e1881e4838bd5
-
SHA1
54385a142c39f1f15db466246e0cc0c17a972b39
-
SHA256
736ec1ee4959f468aa9594fb659e1ac1406956c1928a62e413fd874afc043e59
-
SHA512
097d84126d0edd813e73565cfa2e238837905846b1bd3bb376e9a8c046f679fb103b6ee9a5c15a265885c598c60c924fda29864ccfec19d00376f71e2a28d544
-
SSDEEP
98304:qICd/oB9uLWRjKJJCznvQzZbXR3rz+AXNL6nolNFcYiDr93Gwk62UgPEM:qR9WwcY4QVbXJC2NWAiDrRGfWMx
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/b9503635ef25a584476f71aa4a010b3978ee04e8a956e810b71b05bbef32bb07.exe
Files
-
b9503635ef25a584476f71aa4a010b3978ee04e8a956e810b71b05bbef32bb07.zip.zip
Password: infected
-
b9503635ef25a584476f71aa4a010b3978ee04e8a956e810b71b05bbef32bb07.exe.exe windows:4 windows x86 arch:x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 6.9MB - Virtual size: 6.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 150KB - Virtual size: 149KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ