Static task
static1
Behavioral task
behavioral1
Sample
2229e4b5c8d5fdf7b4ab56f51dab68521234c05adaaca64b1e3e999213514a0a.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2229e4b5c8d5fdf7b4ab56f51dab68521234c05adaaca64b1e3e999213514a0a.exe
Resource
win10v2004-20240412-en
General
-
Target
2229e4b5c8d5fdf7b4ab56f51dab68521234c05adaaca64b1e3e999213514a0a
-
Size
684KB
-
MD5
9d48877b73e58313d5f78e41311a1387
-
SHA1
c547af55bf250ab0ea29a5cbba454a94da46e6e9
-
SHA256
2229e4b5c8d5fdf7b4ab56f51dab68521234c05adaaca64b1e3e999213514a0a
-
SHA512
b3d413b448aae3c3e30de5b123eef86c80ead0e90ff8116661446f41c3d7f898e702f91e1fe540d2e1d15cb59b4fc2f3bf58b0b4fd7fb658a0833f02f9b081c4
-
SSDEEP
12288:ONgLeFR6/Xlv312Z3GN6cXk1LHkyht9aVRB97/0jjcHjylxBP5Nlh1:lXJ312ZA6AIDtAVxYjjcHa/P5N
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 2229e4b5c8d5fdf7b4ab56f51dab68521234c05adaaca64b1e3e999213514a0a
Files
-
2229e4b5c8d5fdf7b4ab56f51dab68521234c05adaaca64b1e3e999213514a0a.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 679KB - Virtual size: 678KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ