Static task
static1
Behavioral task
behavioral1
Sample
a11d36f9f4b69fd1e6c13584455e6270fd906530ad6e034d67927c16cbc76586.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a11d36f9f4b69fd1e6c13584455e6270fd906530ad6e034d67927c16cbc76586.exe
Resource
win10v2004-20240412-en
General
-
Target
a11d36f9f4b69fd1e6c13584455e6270fd906530ad6e034d67927c16cbc76586.exe
-
Size
984KB
-
MD5
81a9abf49104df646db709f0365f8eeb
-
SHA1
fc69c4c2b1b74b7a9773f1824eb0cce589bdd673
-
SHA256
a11d36f9f4b69fd1e6c13584455e6270fd906530ad6e034d67927c16cbc76586
-
SHA512
c802671a311272799431db1ce2a20967919b2b3e0eb3b8a0a691fa181df831b98d9c77093c729eed8c0f009607e7d217dfb9e5da5284bef5f8e44b5c87054014
-
SSDEEP
24576:T0Qxs8dZ3vopZJpw7zJqt7+0fDhFh3EP/gJDWo7WlJhHJx:Tw83qjpGJqd+07hFyYJyeqbX
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource a11d36f9f4b69fd1e6c13584455e6270fd906530ad6e034d67927c16cbc76586.exe
Files
-
a11d36f9f4b69fd1e6c13584455e6270fd906530ad6e034d67927c16cbc76586.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 395KB - Virtual size: 394KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ