UTFU.pdb
Static task
static1
Behavioral task
behavioral1
Sample
22a9af12aa1ebf30e2c6975aa4b8e5bc3b5967c55bcfd596233e4f28b3c646e9.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
22a9af12aa1ebf30e2c6975aa4b8e5bc3b5967c55bcfd596233e4f28b3c646e9.exe
Resource
win10v2004-20240226-en
General
-
Target
22a9af12aa1ebf30e2c6975aa4b8e5bc3b5967c55bcfd596233e4f28b3c646e9
-
Size
746KB
-
MD5
7a323326eb6723bf356cd8752077a797
-
SHA1
1e18fe521ff092bfc698dbe31df20c6be4c9acd5
-
SHA256
22a9af12aa1ebf30e2c6975aa4b8e5bc3b5967c55bcfd596233e4f28b3c646e9
-
SHA512
3d7e369b198cb9ec3a2f5bf6860d423e0542f71143a05172926a180d2ec6eaf55d575e25d11ac8c335048c69fe7b6bea67b6b406cf15fbd630b726d0685deca1
-
SSDEEP
12288:k0KoFwaQyhwM1hilZBrOAoovdMHw9T8FmhiCxaqDmm6:jKo9+M1clmAo00w9oNGaqDmb
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 22a9af12aa1ebf30e2c6975aa4b8e5bc3b5967c55bcfd596233e4f28b3c646e9
Files
-
22a9af12aa1ebf30e2c6975aa4b8e5bc3b5967c55bcfd596233e4f28b3c646e9.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 677KB - Virtual size: 676KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ