Static task
static1
Behavioral task
behavioral1
Sample
803fbfb48d7ebbf4eb8951ff6deb236fa9ed9ef80e69f32d0e8052bb9585d9a3.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
803fbfb48d7ebbf4eb8951ff6deb236fa9ed9ef80e69f32d0e8052bb9585d9a3.exe
Resource
win10v2004-20240508-en
General
-
Target
803fbfb48d7ebbf4eb8951ff6deb236fa9ed9ef80e69f32d0e8052bb9585d9a3
-
Size
3.6MB
-
MD5
55569a59302667f5283b4f67bd8fb360
-
SHA1
6bd993cedbc1b9e2440e97fb2c13591831f8c80f
-
SHA256
803fbfb48d7ebbf4eb8951ff6deb236fa9ed9ef80e69f32d0e8052bb9585d9a3
-
SHA512
f9242428b5c0fff7576bd3ddb54a805648ab530bb7a36014fd7dbdb2fbbcf4b9ec715d9eb2d3cc6f681aabe68a8bbf434ae63e2bb8c608a797f463c100efe420
-
SSDEEP
24576:kHXHVB7lh6GGcGUk+DX/4BqQmIEITvLidP5pHFq+cCThsgcpXFln2IvlOvqoAl7Y:cHJQmIEQTidP5pHFq+NhEPOU+aL
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 803fbfb48d7ebbf4eb8951ff6deb236fa9ed9ef80e69f32d0e8052bb9585d9a3
Files
-
803fbfb48d7ebbf4eb8951ff6deb236fa9ed9ef80e69f32d0e8052bb9585d9a3.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 3.5MB - Virtual size: 3.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 40KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ