fXrdX.pdb
Static task
static1
Behavioral task
behavioral1
Sample
pedido 24-NARC-00248.exe
Resource
win10-20240404-en
General
-
Target
pedido 24-NARC-00248.7z
-
Size
653KB
-
MD5
a2ff27b0a446bbf042b6cffa936cccfd
-
SHA1
6ba24b1e91bb9d3a9c42528957d109725778ae2f
-
SHA256
7548bfdf9300e75edfc670950fed123d6db88853882b125f4b93d7d9dd2be362
-
SHA512
abe9900b9d74d361364b5e95da9bb3082e7e23268d0cbe32a665a542d85c8866447169757e4f0808ab6a9fad7ae05e7fdb5503970916bd75cba002547fdf6144
-
SSDEEP
12288:GFYh3fOnRn3HbZe7+A6LnP8W9pZv/25CpLEHdoVcvuH5WK4Sg8vIPOi:GFIvOnF3bZuVQnTX2M6qCo5H4x8vImi
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/pedido 24-NARC-00248.exe
Files
-
pedido 24-NARC-00248.7z.7z
-
pedido 24-NARC-00248.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 672KB - Virtual size: 672KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ