Static task
static1
Behavioral task
behavioral1
Sample
870973cd645d6cc18bfa1e9e95c1ba7837ed46fcdd04569fc03475baa84d1165.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
870973cd645d6cc18bfa1e9e95c1ba7837ed46fcdd04569fc03475baa84d1165.exe
Resource
win10v2004-20240226-en
General
-
Target
870973cd645d6cc18bfa1e9e95c1ba7837ed46fcdd04569fc03475baa84d1165
-
Size
3.4MB
-
MD5
b7b135030bb68eaf0216005ade7bdf5c
-
SHA1
3c827e3c9bdb7bc3b24bbd07fcb40ef642d02f6c
-
SHA256
870973cd645d6cc18bfa1e9e95c1ba7837ed46fcdd04569fc03475baa84d1165
-
SHA512
b315d4274669febd5cfdabd89061d8324ba1044076790a556aacbacfbacef610a6973c38639c054343f3e472f678915a2d45e88545e04123472068793498d988
-
SSDEEP
49152:dp98Mq2HVhpanF+p1Tjr90vkvGhETXqfi77robXgpJGpAJobrSyuJzflk5QeAC+9:dR1hW+R0P6X9rAgD83NX0VtUlFGp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 870973cd645d6cc18bfa1e9e95c1ba7837ed46fcdd04569fc03475baa84d1165
Files
-
870973cd645d6cc18bfa1e9e95c1ba7837ed46fcdd04569fc03475baa84d1165.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 2.8MB - Virtual size: 2.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ