Static task
static1
Behavioral task
behavioral1
Sample
8b3e308bf8008d70c9993b67aed96d3c0b0e472efd9e8335ec8e6e4f1b7b6e69.exe
Resource
win7-20240221-en
General
-
Target
8b3e308bf8008d70c9993b67aed96d3c0b0e472efd9e8335ec8e6e4f1b7b6e69.exe
-
Size
1000KB
-
MD5
86b576a9f9499877827232a8e6bf11d1
-
SHA1
9744a5db6285f36321f45d82079a07abb310b747
-
SHA256
8b3e308bf8008d70c9993b67aed96d3c0b0e472efd9e8335ec8e6e4f1b7b6e69
-
SHA512
6c639d8b5fd717f0e702ea9655b0b6a986d602a108ab5308685e855cdab5a4a11ad97a19a6ab86a651691bfcdd7bd9de41d54e8116931a0b4fc4c519e15aae81
-
SSDEEP
12288:fjpTNBTW0Gr3OdID7gk2nqbDR2NXgFQkZEqeSHWdY3PkpnioxiuS6RugWL6:dTN5diD7L2q4XMEqeSHzZMS6RWL
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 8b3e308bf8008d70c9993b67aed96d3c0b0e472efd9e8335ec8e6e4f1b7b6e69.exe
Files
-
8b3e308bf8008d70c9993b67aed96d3c0b0e472efd9e8335ec8e6e4f1b7b6e69.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 949KB - Virtual size: 948KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 50KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ