Static task
static1
Behavioral task
behavioral1
Sample
INVedit/INVedit.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
INVedit/INVedit.exe
Resource
win10v2004-20240426-en
General
-
Target
INVedit.zip
-
Size
262KB
-
MD5
183e34746037b8daa6bfd049a9a78bb2
-
SHA1
e918965e7abebca72150b63fbaeaf0b1d187aad9
-
SHA256
594aec4e21e7edd265dba31139644eb6dccc6db98da66d60ce4eca3d9e2c24cd
-
SHA512
4993826c4373463ab2cd3a44f1f73842feae27e3d957bf5cdc425a124aedd7b09f10db08a1e009b6af40d79a3b2b08d529c57577565a99e3793de8f13606696a
-
SSDEEP
6144:lqa9CvWDsE1ZdFlYgbhf5l01ZDHuVBsRGeuLUAjKsUMZTIc:R9CvWDHFiYhf5mTaBnbLUAjKsUM+c
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/INVedit/INVedit.exe
Files
-
INVedit.zip.zip
-
INVedit/INVedit.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 200KB - Virtual size: 196KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 92KB - Virtual size: 89KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
INVedit/items.png.png
-
INVedit/items.txt
-
INVedit/special.png.png
-
INVedit/terrain.png.png