Static task
static1
Behavioral task
behavioral1
Sample
7038b1250cc9380861d92e721d364cb844459f87ecc3fe002b59e97d35926dfa.exe
Resource
win7-20240319-en
Behavioral task
behavioral2
Sample
7038b1250cc9380861d92e721d364cb844459f87ecc3fe002b59e97d35926dfa.exe
Resource
win10v2004-20240412-en
General
-
Target
7038b1250cc9380861d92e721d364cb844459f87ecc3fe002b59e97d35926dfa.exe
-
Size
899KB
-
MD5
817fca5933074f2986f443434eb861ad
-
SHA1
25824f6d451f727d5dddc8d64bc6a37f1d99ab1b
-
SHA256
7038b1250cc9380861d92e721d364cb844459f87ecc3fe002b59e97d35926dfa
-
SHA512
642266711556432953c69f6422785aad79d0e38d5c405efea4e9b79cfea35e648bed9059c6430bd8a34e59f3dd4389de37b1e1aa130c00557baf54e8f8ca8fc7
-
SSDEEP
24576:QQxpv7BpjHfIhWvtLp3UevtyA6Qk5aX7:rpv7b/IkttUyyo
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 7038b1250cc9380861d92e721d364cb844459f87ecc3fe002b59e97d35926dfa.exe
Files
-
7038b1250cc9380861d92e721d364cb844459f87ecc3fe002b59e97d35926dfa.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 889KB - Virtual size: 889KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ