Static task
static1
Behavioral task
behavioral1
Sample
Invoice # 27781.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
Invoice # 27781.exe
Resource
win10v2004-20240412-en
General
-
Target
Invoice # 27781.exe
-
Size
365KB
-
MD5
f5c30a79af9acf6fc4065cad77aa0fd3
-
SHA1
222030b3943e9ed72a9c0b1a4bd74293c15e2dbe
-
SHA256
64c3a2f1f3d66c15c7a383c838347878c5925030bf93657807807d0e9e864846
-
SHA512
093640c3a7dbcdd5d388cd29f434c4a0d7f2381f89325418ae0a9a4a03a4dae798cc7dbdcf88897b79f8327222de07414cf1f7742c2db3350c4556e50afd29f4
-
SSDEEP
6144:7V13TaaCOyVm4adic91/pyru0AZ6Y4e5P1p1h2CVIzTARnDFkeePeov+:BVauyVRuBpyy1LP1rh2Cazteke
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource Invoice # 27781.exe
Files
-
Invoice # 27781.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 363KB - Virtual size: 362KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ