qLxW.pdb
Static task
static1
Behavioral task
behavioral1
Sample
ff7fe4adccbf79733798ebd0648ac1eeeae67bd8c9102ce30ad845f80c799c95.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ff7fe4adccbf79733798ebd0648ac1eeeae67bd8c9102ce30ad845f80c799c95.exe
Resource
win10v2004-20240419-en
General
-
Target
ff7fe4adccbf79733798ebd0648ac1eeeae67bd8c9102ce30ad845f80c799c95
-
Size
740KB
-
MD5
26090850955e5fb4896e091395c5efab
-
SHA1
136a24c124b52bcd122b925bee1a13deea5fba84
-
SHA256
ff7fe4adccbf79733798ebd0648ac1eeeae67bd8c9102ce30ad845f80c799c95
-
SHA512
fa55e45bca00386b970d821388e68467547ad87682f9b3576b1c78acfa4ce6cce0118ce107472deb5ea21fd52ea6ed6fe6fa70b7c2f9a6fac706a358098589f7
-
SSDEEP
12288:wB1oVeonDkhJY4GKC3JZj9BPpe1P5KHliLgU0j/YEwxCB2oE9qZA30R+/wIgrXj1:io5+NeZjReJ4H5HD0xS2oEwZA36Ig3Qi
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ff7fe4adccbf79733798ebd0648ac1eeeae67bd8c9102ce30ad845f80c799c95
Files
-
ff7fe4adccbf79733798ebd0648ac1eeeae67bd8c9102ce30ad845f80c799c95.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 716KB - Virtual size: 715KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 16KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ