Static task
static1
General
-
Target
Brave.exe
-
Size
10.0MB
-
MD5
985adc0e5e56dfbefb20cc380c78d8d1
-
SHA1
ee64c81fddbde2d609774af5cc7712d350e8f305
-
SHA256
f3db989311c9f11fc0382f6b2de9dfc9aab29f304f93b053727f8f91efc665bc
-
SHA512
5d4b7dfd03c6aedac46dbfac6a395f85960c38e4ed8a162be6e29c26eb0cda758addf3640d6d641074776aad99107e5b39086e9cb2433048b1499fa143f1517e
-
SSDEEP
196608:lIaqNFCRlJa611dEjCo+9SzgU1+W83y5/gIdxC7NwJbBaViAc:lJCCaoEDZB8C5/E7NwhBa
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Brave.exe
Files
-
Brave.exe.exe windows:6 windows x64 arch:x64
e22d562d9c5497a08b63da7d5f2b5a83
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
d3d11
D3D11CreateDeviceAndSwapChain
d3dcompiler_43
D3DCompile
kernel32
CreateThread
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress
user32
GetClientRect
advapi32
CryptHashData
ole32
CoUninitialize
safeguard
?antiDebugging@SafeGuardSDK@SafeGuard@@QEAA?AW4StatusCode@2@XZ
imm32
ImmReleaseContext
msvcp140
??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ
dwmapi
DwmExtendFrameIntoClientArea
d3dx11_43
D3DX11CreateShaderResourceViewFromMemory
rpcrt4
UuidCreate
psapi
GetModuleInformation
userenv
UnloadUserProfile
vcruntime140_1
__CxxFrameHandler4
vcruntime140
__C_specific_handler
api-ms-win-crt-stdio-l1-1-0
__stdio_common_vsprintf
api-ms-win-crt-utility-l1-1-0
rand
api-ms-win-crt-string-l1-1-0
towlower
api-ms-win-crt-heap-l1-1-0
malloc
api-ms-win-crt-runtime-l1-1-0
_initialize_onexit_table
api-ms-win-crt-convert-l1-1-0
atoi
api-ms-win-crt-locale-l1-1-0
localeconv
api-ms-win-crt-math-l1-1-0
_dclass
api-ms-win-crt-time-l1-1-0
_gmtime64
api-ms-win-crt-filesystem-l1-1-0
_access
ws2_32
gethostname
crypt32
CertGetNameStringA
wldap32
ord22
normaliz
IdnToAscii
Sections
.jJX=yE- Size: - Virtual size: 710KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
JyE0;fwS Size: - Virtual size: 557KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
O%t@r79@ Size: - Virtual size: 2.9MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
9a(AC-v; Size: - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
9VCb0+o/ Size: - Virtual size: 5.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
>,yUwj-P Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
jXQ09vhn Size: 10.0MB - Virtual size: 10.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
[FbEbO'Y Size: 512B - Virtual size: 180B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
n3:Tw2>V Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ