Static task
static1
Behavioral task
behavioral1
Sample
1400147960 - 1301669350.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
1400147960 - 1301669350.exe
Resource
win10v2004-20240508-en
General
-
Target
bd072bcad3262101757ee25ff87a0d586d807f14f228524165d16fb65c5a7680.rar
-
Size
669KB
-
MD5
7f605ab7627e806c96b083030b89cb08
-
SHA1
13539608f7d77aa5efa26a12ec3719a0cc3618eb
-
SHA256
bd072bcad3262101757ee25ff87a0d586d807f14f228524165d16fb65c5a7680
-
SHA512
d2f13fad584d20a93c352f2aa5d93862ad88bf5d0846c340ac8f441aec21b473533d6a8dcfaa34d390a1732f72263455c6301da83fd8b1c0b46f5726bf54dfc1
-
SSDEEP
12288:IZvHEgUz9UW3m6Jjzvb6W5gfBcV9XIfozpBf14JT4VlX3V7FV6Q5XUj:IxHDU13m6Jjjb6WKaJZDd4OVNt6Qm
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/1400147960 - 1301669350.bat
Files
-
bd072bcad3262101757ee25ff87a0d586d807f14f228524165d16fb65c5a7680.rar.rar
-
1400147960 - 1301669350.bat.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 674KB - Virtual size: 673KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ