Static task
static1
Behavioral task
behavioral1
Sample
SOA FOR APR 2024 PDF.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
SOA FOR APR 2024 PDF.exe
Resource
win10v2004-20240419-en
General
-
Target
470582badbb9549c5a60a0afc30745d6978f3586f72a4ed1b9cac0ab1e379fe0.rar
-
Size
660KB
-
MD5
56eb77f8baeed032115463e8e0ce7a47
-
SHA1
f16c6ecefbc67cd4c9cbf54f5bf91802ffd98c17
-
SHA256
470582badbb9549c5a60a0afc30745d6978f3586f72a4ed1b9cac0ab1e379fe0
-
SHA512
b3438f0f449c5bbbc692b197838c35eac5156906608a2eea26272493c1345326dde5584d4d72e489a4c22bf07bb81c0e38e3dca2e35689636f694b609f3a7b12
-
SSDEEP
12288:nHiPlosLS4BWquZotYG1WnmB+mf6JFCrwh4fMxu6ufi4gX:nHiNn1BduZoOG4mB+Mi9oMx3ufiN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/SOA FOR APR 2024 PDF.exe
Files
-
470582badbb9549c5a60a0afc30745d6978f3586f72a4ed1b9cac0ab1e379fe0.rar.rar
-
SOA FOR APR 2024 PDF.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 696KB - Virtual size: 695KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 6KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ