C:\Windows\Containers\Confidential\DotnetGenerator\Stub\Projects\may\31\NAM\obj\Debug\NAM.pdb
Static task
static1
Behavioral task
behavioral1
Sample
8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9.exe
Resource
win10v2004-20240426-en
General
-
Target
8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9
-
Size
700KB
-
MD5
13c5a61000759346402f0b34ba90d241
-
SHA1
cbdf3f73b57907e1eb86d6e622f83de958dde709
-
SHA256
8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9
-
SHA512
52e688c77a21adc59723b38d9b38a9be137290528359c3d1767d2ce961a8c74e8ca4e5ab5697d32cf284631f1926c183f1d00d26811100253c9383340bf0feb1
-
SSDEEP
12288:VlYfarHpUixrVzCKvwAgvcqtwgKSr35cYu6dCOb4lH:/MaTzPdm0qelQ35K6UHlH
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9
Files
-
8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Sections
.text Size: 22KB - Virtual size: 22KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 100KB - Virtual size: 99KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ