Static task
static1
Behavioral task
behavioral1
Sample
ceaee7b17b8e34dd07ecc0bd94b23209ae391eaab810d0b2c3a34f2ea40f7bb3.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ceaee7b17b8e34dd07ecc0bd94b23209ae391eaab810d0b2c3a34f2ea40f7bb3.exe
Resource
win10v2004-20240412-en
General
-
Target
6e88515e4dad072c8046951cbff6c019b6f71c34c9112af48f83c88e64485f11
-
Size
621KB
-
MD5
1d4cf9b283151dcd38236f38abf6c551
-
SHA1
cd261d5d334a46358ad0accf628116ce4bcb6643
-
SHA256
6e88515e4dad072c8046951cbff6c019b6f71c34c9112af48f83c88e64485f11
-
SHA512
348c59a232d3335c266c0c699eba33083b09f4db42387ae94d294eb2478b3b3602f838e3dc35c6d087d05bced1d304777922ae103fec2c16b66c686b4984747b
-
SSDEEP
12288:foro91l9TZ+iQcX+0QplSV/9iNFS2XA/FWA1vB+NdjoxBSz7GDet:fokLlhZ+icy1WADJBSHGDet
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/ceaee7b17b8e34dd07ecc0bd94b23209ae391eaab810d0b2c3a34f2ea40f7bb3.exe
Files
-
6e88515e4dad072c8046951cbff6c019b6f71c34c9112af48f83c88e64485f11.zip
Password: infected
-
ceaee7b17b8e34dd07ecc0bd94b23209ae391eaab810d0b2c3a34f2ea40f7bb3.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 635KB - Virtual size: 634KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ