Dgpa.pdb
Static task
static1
Behavioral task
behavioral1
Sample
GLES Inquiry G-6463.exe
Resource
win7-20240221-en
General
-
Target
8442260d49134ab9d97bd220a5bd3e46b6ee7ce0eed4e1eda5370ed21ad421bf
-
Size
1.2MB
-
MD5
cf70baafd6d142c6b1982d9931fa028a
-
SHA1
d80aa1c74acfbc255ce649109b2fab5e462f0128
-
SHA256
8442260d49134ab9d97bd220a5bd3e46b6ee7ce0eed4e1eda5370ed21ad421bf
-
SHA512
75e699f9b3458bfd54693873442626b5c571129cce66494d18cd2643810397f0426a97a446750e5dce6f7279a7c87874a5af06ffd3e7aa3defd9fd3042c02dd9
-
SSDEEP
12288:1VmKt/rFfa7mlaGLcuz2PUPCRYDdhKmmVF5jyvgBC7kQW5gWR2ZQ2O4dh1:WKN5imJyPsCRYD3K1X2vCHQykZQ8dh1
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack002/GLES Inquiry G-6463.exe
Files
-
8442260d49134ab9d97bd220a5bd3e46b6ee7ce0eed4e1eda5370ed21ad421bf.iso
-
out.iso.iso
-
GLES Inquiry G-6463.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 702KB - Virtual size: 702KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ