Static task
static1
Behavioral task
behavioral1
Sample
#568350035791.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
#568350035791.exe
Resource
win10v2004-20240412-en
General
-
Target
#568350035791.exe
-
Size
770KB
-
MD5
63afe391178cb8bf14d24d2d569dbc51
-
SHA1
477c0cea3777ec0e4e98eba78dd81b72f12af8f4
-
SHA256
2fa2f6f81dc805b509157ff73570ef9fd921cc0b73bece828000356c926546a6
-
SHA512
0beea59ffb0e56eb7c926cb125944c43d753788cce9a0b0ff43e78c14e689c330349e372f28df0366e52af044c397335f8889f755e59c0a7380496009ccbec6b
-
SSDEEP
12288:Wp2IEA/HPL374emD+biF/cQ5zLYsC+1BViX1j4bSVlxVlIi014bFZsyWFcw:OPDdmDZ/cQ91pBViFjXlN9FZsy6cw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource #568350035791.exe
Files
-
#568350035791.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 768KB - Virtual size: 767KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ