Static task
static1
Behavioral task
behavioral1
Sample
ba5781e82208fc43ed641703e3acb2303383969043d8a8b1c74ec8a020e8bcd4.exe
Resource
win7-20240221-en
General
-
Target
ba5781e82208fc43ed641703e3acb2303383969043d8a8b1c74ec8a020e8bcd4
-
Size
25KB
-
MD5
61efe37cd0927a3e495230c7772f0b74
-
SHA1
91f6e125bf3cf3db04d60ad8ac6a0c3e5a9f845a
-
SHA256
ba5781e82208fc43ed641703e3acb2303383969043d8a8b1c74ec8a020e8bcd4
-
SHA512
9e238f0d684885bf497bc0f685d1d10cedaf3be215a8b7c42db05b02361dadf5c7ee7f42ec1264f89895f11ce8401a6a5df1d99ceaf142350cc09e2da9c4e366
-
SSDEEP
768:svpnI/0RuCK1dLoBlFu9wqBU/XdklbAH3bwsVV:QEj91ddRqFXXXH
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ba5781e82208fc43ed641703e3acb2303383969043d8a8b1c74ec8a020e8bcd4
Files
-
ba5781e82208fc43ed641703e3acb2303383969043d8a8b1c74ec8a020e8bcd4.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 1024B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ