Static task
static1
Behavioral task
behavioral1
Sample
4879a2cacb17ed1bafb72c2f45107db3.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
4879a2cacb17ed1bafb72c2f45107db3.exe
Resource
win10v2004-20240419-en
General
-
Target
4879a2cacb17ed1bafb72c2f45107db3.exe
-
Size
1.4MB
-
MD5
4879a2cacb17ed1bafb72c2f45107db3
-
SHA1
b967b5f94981511f6d90bef1b906acf6e6fb8c4d
-
SHA256
fbef54640e9791c9647a9fa69ef3bfa21d073ad9a4bcc14e7033f03f768f6e13
-
SHA512
95164161e9421892dd1b1f0c296a555df60e79e9f91457aa13a72cd5a42595d8107aa3bbd26d5c547b5eb5de89d42446b0047ca1f134c008186c091898fd46b2
-
SSDEEP
24576:Dlv9Mao9mzixB+Ti0I/5wuo68s9DET0QFvCyBOOTicfKX6o+:V9Mao9mznGuuOCDETn5OOTFB9
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4879a2cacb17ed1bafb72c2f45107db3.exe
Files
-
4879a2cacb17ed1bafb72c2f45107db3.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 464KB - Virtual size: 464KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 56KB - Virtual size: 88KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.trace Size: 8KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.ftsafe Size: 452KB - Virtual size: 452KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ftsafe Size: 452KB - Virtual size: 452KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE