Static task
static1
Behavioral task
behavioral1
Sample
fdc425927411eea9bee258db58c8e38c890af3f0c084b160e53b417597004421.exe
Resource
win7-20240221-en
General
-
Target
fdc425927411eea9bee258db58c8e38c890af3f0c084b160e53b417597004421
-
Size
66KB
-
MD5
e464d6d2a65533f864d44052bec96666
-
SHA1
5080b97abbbeb04bf6759071bdabe5a5f440e9c7
-
SHA256
fdc425927411eea9bee258db58c8e38c890af3f0c084b160e53b417597004421
-
SHA512
6249da6f6b0a08303877f7b8204aa36d6ccb5ce99b68fde470819de933a899ae5b651eec54770c6534607738b635f3d388f0e882405636c73fa7db949130951a
-
SSDEEP
1536:Qh1oRJbj/e+Zk77RNCLp44x6xZoEV0JuRUFyMOaHQ1l:QCe+aX3t4rk0JXXOeQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource fdc425927411eea9bee258db58c8e38c890af3f0c084b160e53b417597004421
Files
-
fdc425927411eea9bee258db58c8e38c890af3f0c084b160e53b417597004421.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.Upack Size: - Virtual size: 184KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 32KB - Virtual size: 64KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE