Static task
static1
Behavioral task
behavioral1
Sample
ASCD0001 INQ9829......pdf.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
ASCD0001 INQ9829......pdf.exe
Resource
win10v2004-20240508-en
General
-
Target
45265b540e95d629976bf7e09c58897539ec2c0c46ca5c9c986a5ab17da99b96.zip
-
Size
773KB
-
MD5
d6dbae0c2eafd51e4ee7852a412d76fb
-
SHA1
e597198f4cc1499d6593ff5a9b2f0c6dfd2a5b98
-
SHA256
45265b540e95d629976bf7e09c58897539ec2c0c46ca5c9c986a5ab17da99b96
-
SHA512
9a3da1a2ad72cb52e1bcd97f58c2c4b69108b48752fdd8f962bace86d94280103d5de8c367a2d219b76f92435238773e1df77aac0b0df4950461ae4bffd2a8b3
-
SSDEEP
24576:3Hs8bYIU4b/xXlcjeJmh1opmjXXzmYhNz6dkA4:3s8btU4b/3NJdmjXjmYhNz62A4
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/ASCD0001 INQ9829......pdf.exe
Files
-
45265b540e95d629976bf7e09c58897539ec2c0c46ca5c9c986a5ab17da99b96.zip.zip
-
ASCD0001 INQ9829......pdf.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 820KB - Virtual size: 819KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 12KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ