Resubmissions
14/05/2024, 18:28
240514-w4f6ksaa9t 3Static task
static1
General
-
Target
McDecryptor.exe
-
Size
21KB
-
MD5
81baf9ae53746743d48a38fed252874c
-
SHA1
f3bbb93d7c8ce7479e476f726565dd3d21d4e90a
-
SHA256
c93b9a4aee2c1c2279f2fcabeb2046ceca735466c7431dcaf43ae48d51d550fe
-
SHA512
ad99c6d41d53c392114c7d60e5e8d1954d18ebddc042e881551368645dad88fea100b24f0ea0f4729cd77cee6788b527065f1f44cf22f92129a75d47c53ba527
-
SSDEEP
384:N7UePCjNOwOAlbw7FSlwB2uQs1aiP3cdQbZ8h8B6vfr45ITrw:N7UePQNOwOAlbw7FNH1aivfbZBqR3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource McDecryptor.exe
Files
-
McDecryptor.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
mscoree
_CorExeMain
Sections
.text Size: 14KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ