Static task
static1
Behavioral task
behavioral1
Sample
6eb3b2125a126862766307070afbd35b012850563523bdda2ce3cfe952af6fdb.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
6eb3b2125a126862766307070afbd35b012850563523bdda2ce3cfe952af6fdb.exe
Resource
win10v2004-20240426-en
Errors
General
-
Target
6eb3b2125a126862766307070afbd35b012850563523bdda2ce3cfe952af6fdb
-
Size
14.0MB
-
MD5
601cedc4e5ec2d83b8df1f2a9834528e
-
SHA1
f5e3b1a522bc4f705c87aa853384e53b7378de05
-
SHA256
6eb3b2125a126862766307070afbd35b012850563523bdda2ce3cfe952af6fdb
-
SHA512
045757ccbc0c8f367c600ed94eff932cf753b5a793f274e681a31eb2f2b13b27ea8c1031841e319f0447ccdcf296e8ee77065050425fd85a380a90dea54b1101
-
SSDEEP
98304:Rhcqnt8zi8o5jX24Y/fmLaZv7x4iPdL0zKcKv9QZIaGSNLQKlgzmRXkWe:RHntxX24Y/Vd131LIbZIpSLQKiik
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6eb3b2125a126862766307070afbd35b012850563523bdda2ce3cfe952af6fdb
Files
-
6eb3b2125a126862766307070afbd35b012850563523bdda2ce3cfe952af6fdb.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 13.8MB - Virtual size: 13.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 173KB - Virtual size: 172KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ