Java_plus_nlaunch_NLaunch_getSafe
Java_plus_nlaunch_NLaunch_loadSafe
_cgo_dummy_export
Behavioral task
behavioral1
Sample
611a1e761c58f2b585ad676adfac9d4a0cb2a8029b17f18cd41615f00d05cef0.dll
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
611a1e761c58f2b585ad676adfac9d4a0cb2a8029b17f18cd41615f00d05cef0.dll
Resource
win10v2004-20240426-en
Target
611a1e761c58f2b585ad676adfac9d4a0cb2a8029b17f18cd41615f00d05cef0.exe
Size
1.1MB
MD5
0604b7fda1cd71055c0982649e3bc370
SHA1
73c200481925bb0cf52057802ec985b122b7284f
SHA256
611a1e761c58f2b585ad676adfac9d4a0cb2a8029b17f18cd41615f00d05cef0
SHA512
78caabd40c3b905d6982181df058a39a30a7e8f3f1c656d32497f0934be17ea9a41231109d549558511b77afb6eabee42a7d77eddcbb56873d53bf00c8348764
SSDEEP
24576:C5Iou+kWi+NxjLbR0xcNDBD63zDU8mM2LYHvp4pkap:2w+kH+NxDhBD63HU1M28ra
Processes:
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
Processes:
resource |
---|
611a1e761c58f2b585ad676adfac9d4a0cb2a8029b17f18cd41615f00d05cef0.exe |
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL
Java_plus_nlaunch_NLaunch_getSafe
Java_plus_nlaunch_NLaunch_loadSafe
_cgo_dummy_export
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE