Static task
static1
Behavioral task
behavioral1
Sample
e153b592993c4762a8f6edbf71a143e0f64ddbaf3f2e06a8d5628e01a9cfe590.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
e153b592993c4762a8f6edbf71a143e0f64ddbaf3f2e06a8d5628e01a9cfe590.exe
Resource
win10v2004-20240226-en
General
-
Target
e153b592993c4762a8f6edbf71a143e0f64ddbaf3f2e06a8d5628e01a9cfe590
-
Size
12KB
-
MD5
6592b914628b4df92af92aef6e19d8f6
-
SHA1
0e78919e1bd51c583bd2b9ce9a5840d0f60e0751
-
SHA256
e153b592993c4762a8f6edbf71a143e0f64ddbaf3f2e06a8d5628e01a9cfe590
-
SHA512
23b58d4a14aa5c6894b66af6f2f704cdae2b5c853dfc8418f479742ac21de3016abef4811ee30484dce89042844a1b918180eb174d4ef36333076cfe5a92311e
-
SSDEEP
384:bL7li/2zZq2DcEQvdQcJKLTp/NK9xa+2:PZMCQ9c+2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e153b592993c4762a8f6edbf71a143e0f64ddbaf3f2e06a8d5628e01a9cfe590
Files
-
e153b592993c4762a8f6edbf71a143e0f64ddbaf3f2e06a8d5628e01a9cfe590.exe .ps1 windows:4 windows x86 arch:x86 polyglot
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ