Static task
static1
Behavioral task
behavioral1
Sample
SolaraB (1)/SolaraBootstrapper.exe
Resource
win7-20240221-en
General
-
Target
SolaraB (1).rar
-
Size
77KB
-
MD5
753a2aad09ecb09c178b14097eda7edd
-
SHA1
8cb0d43692dbe6ef175bef43dd39477d3be7cc1f
-
SHA256
fbf61750b5c1b16036bc70f6b65c90768e4e66085ef12ad537c47c9233d2107f
-
SHA512
fd6a3110dab2395bae32f49c65c6385a8e3c064093f49a798031e278b69e3a4dd7b619e4ba00377ea63af9b560b697204427f57d2e0606dbed5eba6e5e540709
-
SSDEEP
1536:NKnJ562qkRP9kgjkAXATxUNsYNbwnhUXo2/1j:NGJmknBjkAwTC/kQt
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/SolaraB (1)/SolaraBootstrapper.exe
Files
-
SolaraB (1).rar.rar
-
SolaraB (1)/SolaraBootstrapper.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 83KB - Virtual size: 82KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ