Static task
static1
Behavioral task
behavioral1
Sample
1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd.exe
Resource
win10v2004-20240426-en
General
-
Target
1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd
-
Size
63KB
-
MD5
1e2d4ac6c8ddf1bf2e93cc52244a115b
-
SHA1
2723b93fceca4bc492adb684673db1b34dc2ca9d
-
SHA256
1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd
-
SHA512
ec73a2b913a5c89819b4725a140b512a4740abc5d1b19bffbe27068d066e915b9cea52d52ee94e8d6ecd113b8420a88e854b009bf709884942c7f1d9041ec874
-
SSDEEP
1536:XISo/fSKBpE3WyY2LJGWXN6Je0fCuSKuH0NrtX2cQrcxEZN12:mKKBi3WMhN6JefuSXH0VtXacxELs
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd
Files
-
1255c2e3472cdf52b9f5be38d52915599c33954ead43218fe3c2297196284fbd.exe windows:4 windows x86 arch:x86
93b9ff75b1a0fcb36593d6dae914bb83
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetConsoleWindow
UnlockFileEx
GetModuleFileNameA
GetConsoleInputWaitHandle
CheckNameLegalDOS8Dot3W
AreFileApisANSI
FindFirstFileA
LocalUnlock
GetDefaultSortkeySize
GetNextVDMCommand
GetNextVDMCommand
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 49KB - Virtual size: 70KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE