Static task
static1
Behavioral task
behavioral1
Sample
cc78ed9a93c73bc24e5c6012694b9a286ee05edaef31d0095e41a665c8ca1af1.exe
Resource
win7-20240508-en
General
-
Target
cc78ed9a93c73bc24e5c6012694b9a286ee05edaef31d0095e41a665c8ca1af1
-
Size
86KB
-
MD5
66c837f646473e679b8b58bae41d4bcc
-
SHA1
cbbdaf3fe040d606d6aec9cc5e7bef2b7a2da8c1
-
SHA256
cc78ed9a93c73bc24e5c6012694b9a286ee05edaef31d0095e41a665c8ca1af1
-
SHA512
a3341f261c8c2e051a23152e12627ca08cb803988426c02b2d8b41c40854e8eb90ab645037acf2968444fd1a7ea96a9cb524a78f3b3f5a28f696267b2b979a77
-
SSDEEP
1536:71PWJsDkhsc5lw2tPZ1QF30BqIHr6jIfv8RNb:i5l3m3aqI2Ifv4
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource cc78ed9a93c73bc24e5c6012694b9a286ee05edaef31d0095e41a665c8ca1af1
Files
-
cc78ed9a93c73bc24e5c6012694b9a286ee05edaef31d0095e41a665c8ca1af1.exe windows:5 windows x86 arch:x86
b892955ae494fe908bdf52e81e1dfa4c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
GetProcAddress
VirtualAlloc
VirtualFree
VirtualProtect
user32
EndPaint
advapi32
RegCloseKey
shell32
ShellExecuteA
ws2_32
WSAStartup
iphlpapi
GetAdaptersAddresses
Sections
.text Size: 32KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 5KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1024B - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 47KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 3KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
GTDTSYDW Size: 25KB - Virtual size: 28KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE