Static task
static1
Behavioral task
behavioral1
Sample
55ca6e3bbf1d36f43fb873b3956d9e9ede7586eed508551d463aef4b56ed709f.exe
Resource
win7-20240221-en
General
-
Target
62deef167c5cb95c907dd65550e619ffc6dfa504cde7b4c1e6102bd48f800210
-
Size
663KB
-
MD5
33838a231b928bf4392de4e1adc725cd
-
SHA1
290f71300e89f93f5c01520c7681c858b251474d
-
SHA256
62deef167c5cb95c907dd65550e619ffc6dfa504cde7b4c1e6102bd48f800210
-
SHA512
d74f55219b760156ee6f3cd6652161ef6c43800c5a62d7fd3d24d67bea943dc3a469f8de1400974560ff564be2d906b15b2f2898479d5eef53032a7ea2fdc29b
-
SSDEEP
12288:NZz9aBueydTSPWmSB6MUHQ7AvYy9eQu+lN4i54qc/lwkkPC7+7Pgs7:b9Ejy0PWGME9eClLT+ka7+797
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/55ca6e3bbf1d36f43fb873b3956d9e9ede7586eed508551d463aef4b56ed709f.exe
Files
-
62deef167c5cb95c907dd65550e619ffc6dfa504cde7b4c1e6102bd48f800210.zip
Password: infected
-
55ca6e3bbf1d36f43fb873b3956d9e9ede7586eed508551d463aef4b56ed709f.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 698KB - Virtual size: 697KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ