Static task
static1
Behavioral task
behavioral1
Sample
0ba3c41d6d376063b52d43f69ae7cf05dc0ad694a211daa48e9017a8492c06ff.exe
Resource
win7-20240221-en
General
-
Target
0ba3c41d6d376063b52d43f69ae7cf05dc0ad694a211daa48e9017a8492c06ff
-
Size
72KB
-
MD5
ed10ab87357adc764232ebe50bf40cc5
-
SHA1
017ff541f9e7cdda8c7a9333c486fa51d2229830
-
SHA256
0ba3c41d6d376063b52d43f69ae7cf05dc0ad694a211daa48e9017a8492c06ff
-
SHA512
b8ad6a0a2080fa0d80cf8e56b5c56d3aaa7fd37daf5ff6709ed21f57614af73036bb2dc2a64fffb60e607873ad5d4e179e60ad3080022d934778b79049cd5fdb
-
SSDEEP
1536:8GKFe+Zk7VJbwlYXjPrsqrZMYR5p8wUawuzXv4exFRKs9uhh:8GYe+azbRPrlr9RXFUawuzX+kuX
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0ba3c41d6d376063b52d43f69ae7cf05dc0ad694a211daa48e9017a8492c06ff
Files
-
0ba3c41d6d376063b52d43f69ae7cf05dc0ad694a211daa48e9017a8492c06ff.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.Upack Size: - Virtual size: 172KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 39KB - Virtual size: 68KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE