Static task
static1
Behavioral task
behavioral1
Sample
a1fa405e15cbdf1b3dd7247d5a708b9d8e62ade764a9df7b9075fbbe14dcb71d.exe
Resource
win7-20240221-en
General
-
Target
a1fa405e15cbdf1b3dd7247d5a708b9d8e62ade764a9df7b9075fbbe14dcb71d
-
Size
1.3MB
-
MD5
780331c1ca6bb5df11eff07d0e2ae963
-
SHA1
dd6d3f3d8367b9a8cbecfe2b5839c542caea7225
-
SHA256
a1fa405e15cbdf1b3dd7247d5a708b9d8e62ade764a9df7b9075fbbe14dcb71d
-
SHA512
229d70fab70a26d01109c0d56eebc28b7bc71c7410d14356e2309b97c9cc7222677ced289c26c9072145dfa04b54fd7dac06a0de34a58cde62a790d391ea4f8c
-
SSDEEP
24576:X7ZNQ1pZtDtfu67T8a+SHDy45m5ZbHNYG4k2EV2ynovuTGn7QWxxdALx:X7ZNQ1pZDuOTLHhs/pV2yn7TG7ZRAd
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource a1fa405e15cbdf1b3dd7247d5a708b9d8e62ade764a9df7b9075fbbe14dcb71d
Files
-
a1fa405e15cbdf1b3dd7247d5a708b9d8e62ade764a9df7b9075fbbe14dcb71d.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.Upack Size: - Virtual size: 148KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 25KB - Virtual size: 56KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE