Static task
static1
Behavioral task
behavioral1
Sample
b9465c3d7b61974569376e9f8fb9a689d5cd629278ba7ee1605ad66e7ec5b48f.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b9465c3d7b61974569376e9f8fb9a689d5cd629278ba7ee1605ad66e7ec5b48f.exe
Resource
win10v2004-20240226-en
General
-
Target
b9465c3d7b61974569376e9f8fb9a689d5cd629278ba7ee1605ad66e7ec5b48f
-
Size
689KB
-
MD5
2578069939add5ea403339d1fb4a4dd5
-
SHA1
f227c186a1c0b83937778cc3715de7f831a24d79
-
SHA256
b9465c3d7b61974569376e9f8fb9a689d5cd629278ba7ee1605ad66e7ec5b48f
-
SHA512
b77288edf55dbb43449e0fc7e291f50a4995e50f25db911c1b5cb299ac86e67ce40d3f7ca1edbfd45cd0658b5278d322fc588bb24bbd4808ba94b83d0865effb
-
SSDEEP
12288:bNgLeFR60FXlv312Z3fPxIalwUGUiHtYYfp47bI4uqe5Jy2a+7x/XOg0KMh6hpF:rFXJ312Z3aalmpNpObjeu2h7xmd/h6HF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource b9465c3d7b61974569376e9f8fb9a689d5cd629278ba7ee1605ad66e7ec5b48f
Files
-
b9465c3d7b61974569376e9f8fb9a689d5cd629278ba7ee1605ad66e7ec5b48f.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 684KB - Virtual size: 683KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ