Static task
static1
Behavioral task
behavioral1
Sample
e395b8704c8b65699877bfd16ec7fb5c9c3f4d426b615394a9e5bf0bbc525140.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
e395b8704c8b65699877bfd16ec7fb5c9c3f4d426b615394a9e5bf0bbc525140.exe
Resource
win10v2004-20240419-en
General
-
Target
e395b8704c8b65699877bfd16ec7fb5c9c3f4d426b615394a9e5bf0bbc525140
-
Size
770KB
-
MD5
9870fbae6882a8bd61583767cf5f10ca
-
SHA1
1962b6ababc64d5932afa7f5890486f83689d7a7
-
SHA256
e395b8704c8b65699877bfd16ec7fb5c9c3f4d426b615394a9e5bf0bbc525140
-
SHA512
a537d2784a8c2d6bb82f22376ed245a1ef4d2d25b503fabbb515fce9093e7d8b39af0cf808535096bc85eeab958d2d15511ed2babd9c020917a253c4c0e78000
-
SSDEEP
12288:znI/p6EdS++6Q+kisdqpTIpZapBQkzKzhb99zWEIqO0/iuSNUGx9000N5Fu5P/SH:E/pNS+lKpcB1zKzhb99INwX5Fu5iH
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e395b8704c8b65699877bfd16ec7fb5c9c3f4d426b615394a9e5bf0bbc525140
Files
-
e395b8704c8b65699877bfd16ec7fb5c9c3f4d426b615394a9e5bf0bbc525140.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 698KB - Virtual size: 697KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ