Static task
static1
Behavioral task
behavioral1
Sample
708e198608b5b463224c3fb77fcf708b845d0c7b5dbc6e9cab9e185c489be089.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
708e198608b5b463224c3fb77fcf708b845d0c7b5dbc6e9cab9e185c489be089.exe
Resource
win10v2004-20240419-en
General
-
Target
5fa09b4a734ffd9d9cfce40ae9cc0168.bin
-
Size
473KB
-
MD5
7cf6e549195b7eeb85655af4d4bd68e4
-
SHA1
72afe2c9ab8ed92fb79e169f10febee3570a6023
-
SHA256
82feafa2d92b5f448e928169a78c56610b8904287bf17d49db7011411d4e2f02
-
SHA512
03788794aa249f6f695fbb2492518c327332098809e809fcd5c0e75aee0bafc07fd7f09dff3187ca19066039504cca0e8574faf3c54406319ee6291b362f8686
-
SSDEEP
12288:vfr+uPjHSrvfb/NfZQaO3tJKC/IMsFjtU8KTWombwnKHoydFYohih1Wr:vT+YHSrvfrNfZQ3xIhj+pThxnKIyuzTo
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack002/708e198608b5b463224c3fb77fcf708b845d0c7b5dbc6e9cab9e185c489be089.exe
Files
-
5fa09b4a734ffd9d9cfce40ae9cc0168.bin.zip
Password: infected
-
ad165ea66d839cb1c0b70a9f3270b583c47800b5c2d40e7e690a31e71f4685b9.zip.zip
Password: infected
-
708e198608b5b463224c3fb77fcf708b845d0c7b5dbc6e9cab9e185c489be089.exe.exe windows:4 windows x86 arch:x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 925KB - Virtual size: 925KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ