Static task
static1
Behavioral task
behavioral1
Sample
eda49e4ee0f9deaecd5b05f158140acc678049c8c62919d7427486b88d9c4697.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
eda49e4ee0f9deaecd5b05f158140acc678049c8c62919d7427486b88d9c4697.exe
Resource
win10v2004-20240426-en
General
-
Target
eda49e4ee0f9deaecd5b05f158140acc678049c8c62919d7427486b88d9c4697
-
Size
14KB
-
MD5
a488c18dabdf17bcf417c583a1b1cb1f
-
SHA1
35bdbafff511ad7e2449519f13c9dad1000cada3
-
SHA256
eda49e4ee0f9deaecd5b05f158140acc678049c8c62919d7427486b88d9c4697
-
SHA512
e65c8f43121d5123269589fdede86b6748e2f7a8dcded7ed79d19caa2ef9ae7421d5d71ea933be123ec315e6ebb3cbae32dbc4cb8a0ff5f5af561b39b812c5a5
-
SSDEEP
384:CGH2NW00AbIpiKn0obM4clD6WOLaWDE045HpWwWw:NWR0vYK00uZI9AyP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource eda49e4ee0f9deaecd5b05f158140acc678049c8c62919d7427486b88d9c4697
Files
-
eda49e4ee0f9deaecd5b05f158140acc678049c8c62919d7427486b88d9c4697.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.text Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ