Static task
static1
Behavioral task
behavioral1
Sample
829f94ffd9569368a26ef7d515907084a9f4f5a2876b7f5928e75976a06a9574.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
829f94ffd9569368a26ef7d515907084a9f4f5a2876b7f5928e75976a06a9574.exe
Resource
win10v2004-20240412-en
General
-
Target
829f94ffd9569368a26ef7d515907084a9f4f5a2876b7f5928e75976a06a9574
-
Size
752KB
-
MD5
1358776bb4bbaf4d48093571d336d33e
-
SHA1
d805ae684052dc76a97f63ec8a747a8b487c04ab
-
SHA256
829f94ffd9569368a26ef7d515907084a9f4f5a2876b7f5928e75976a06a9574
-
SHA512
e2d6bb79fb76c90838b471f3e75308cf3dc73c2efc970378eac7262f7d5e4a4a3f223bac5f19e365b77a37f5cd4bd83d4462b27f2922673d29e4b828ecc72e43
-
SSDEEP
12288:1VK/pbM2+MqX7IS2g2RLIw5AuK6iNW83S/LZXT+ZaYN6ypJ89z00ZQYeI2y/HRwZ:1ViM2+rM9RLIw5AdNWzLZD+n8x00ZEI8
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 829f94ffd9569368a26ef7d515907084a9f4f5a2876b7f5928e75976a06a9574
Files
-
829f94ffd9569368a26ef7d515907084a9f4f5a2876b7f5928e75976a06a9574.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 736KB - Virtual size: 732KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ