Static task
static1
Behavioral task
behavioral1
Sample
d8bbdfbef501c9edf16ae46b2e5bb9e30e18027a6135b3d5ad80926ced6e0c51.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
d8bbdfbef501c9edf16ae46b2e5bb9e30e18027a6135b3d5ad80926ced6e0c51.exe
Resource
win10v2004-20240426-en
General
-
Target
d8bbdfbef501c9edf16ae46b2e5bb9e30e18027a6135b3d5ad80926ced6e0c51
-
Size
3.2MB
-
MD5
3be5cd1496bf44c21cc0071960e22329
-
SHA1
075deb2aa376b810c44bbdc3e77d53f3e709b1ec
-
SHA256
d8bbdfbef501c9edf16ae46b2e5bb9e30e18027a6135b3d5ad80926ced6e0c51
-
SHA512
1dbea350562ebf9ff1f30cc108afabb0690d1d59e656483b3f11ebeb172ba0ebfc955aaca31a8b03f2b27a267960c7e03349b4700e0eb4ace459eafcdf412fce
-
SSDEEP
98304:RlmloQDLWLyGwSCJ5maSRzmraHC3tC1+aofjB:RMloQnYyG4sazc+Jj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d8bbdfbef501c9edf16ae46b2e5bb9e30e18027a6135b3d5ad80926ced6e0c51
Files
-
d8bbdfbef501c9edf16ae46b2e5bb9e30e18027a6135b3d5ad80926ced6e0c51.exe windows:4 windows x86 arch:x86
41387c60133663981bdbef8b33c74abf
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
user32
SetUserObjectSecurity
advapi32
RegOpenKeyExW
Sections
Size: - Virtual size: 3.0MB
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 93KB - Virtual size: 96KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE