Static task
static1
Behavioral task
behavioral1
Sample
9cd54ea866cbe12c0c76dc5f4471c8268a5b1e8ce99a800f59ea9766de318754.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
9cd54ea866cbe12c0c76dc5f4471c8268a5b1e8ce99a800f59ea9766de318754.exe
Resource
win10v2004-20240226-en
General
-
Target
9cd54ea866cbe12c0c76dc5f4471c8268a5b1e8ce99a800f59ea9766de318754
-
Size
3.4MB
-
MD5
9bd2d833ec0a6a12eff2c0a6d604825b
-
SHA1
384effb1f56cb047458e7beca898c6d952d85890
-
SHA256
9cd54ea866cbe12c0c76dc5f4471c8268a5b1e8ce99a800f59ea9766de318754
-
SHA512
810f625a3a23137546e5ef9f9762859850804d4a9ac3014f23fe068cd9ed3df01586a109f28a751f718ddc8f9a8bfa6fb12f16ae81cf1db8b93d9a348ebf8225
-
SSDEEP
49152:abpTXrBjFeuafVy7afIQ56De4MBDh/Mk/cyO1AbrdeWQPvI6MlmF35x3sddWZ0YG:GtuavQwF4hEb1AXMDD3HH2YVIQwJ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 9cd54ea866cbe12c0c76dc5f4471c8268a5b1e8ce99a800f59ea9766de318754
Files
-
9cd54ea866cbe12c0c76dc5f4471c8268a5b1e8ce99a800f59ea9766de318754.exe windows:6 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 1.7MB - Virtual size: 4.9MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 183KB - Virtual size: 652KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 34KB - Virtual size: 2.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 30KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 89KB - Virtual size: 628KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: - Virtual size: 332KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 190KB - Virtual size: 192KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 175KB - Virtual size: 2.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE