Static task
static1
Behavioral task
behavioral1
Sample
a2598161e1efff623de6128ad8aafba9da0300b6f86e8c951e616bd19f0a572b.exe
Resource
win7-20240319-en
Behavioral task
behavioral2
Sample
a2598161e1efff623de6128ad8aafba9da0300b6f86e8c951e616bd19f0a572b.exe
Resource
win10v2004-20240226-en
General
-
Target
a2598161e1efff623de6128ad8aafba9da0300b6f86e8c951e616bd19f0a572b
-
Size
19KB
-
MD5
929b12bc9f9e5f8e854de1d46ebf40d9
-
SHA1
c1fbe0fc31099b71315355da25a7036ea51a8627
-
SHA256
a2598161e1efff623de6128ad8aafba9da0300b6f86e8c951e616bd19f0a572b
-
SHA512
68fe2dd27c8f861ac254abda118e13a5b8e434ecb60fe4afc97fca6e750d742e0c4ff7be001f94799bbec80f3932c0030e4d569f8dcc6527faca4e12b03e7b9b
-
SSDEEP
384:Ffl/UMj8vN2Gti4KgTUjub9ttBuMsUdIxc9:9l/UAGSvgTgux9sUdR
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource a2598161e1efff623de6128ad8aafba9da0300b6f86e8c951e616bd19f0a572b
Files
-
a2598161e1efff623de6128ad8aafba9da0300b6f86e8c951e616bd19f0a572b.exe windows:6 windows x64 arch:x64
b552436fca61b3d053aae8e1e0ee5d0c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
kernel32
OutputDebugStringA
Sections
.text Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 284B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 512B - Virtual size: 84B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ