Static task
static1
General
-
Target
traveldoc1__PEFILE__OFFSET=0xc492.bin
-
Size
25KB
-
MD5
54749f0cdd54c371d2bd2f100db5a8fb
-
SHA1
25d7d2765ebe3fc6e7730ef7a3c11058a6f5e3a1
-
SHA256
a97b85dba2140fdbffb01e5deba4ebef5677fc7e1595676710ab50d9806ad4fa
-
SHA512
e80ced5c9c83c30c36a45aa014b545f93e185afdd46e94868f8f5aec678e3c8bfb75d9a193e880c71d4331c764d08b6bcede1d211eda7b8dd058cde6ad1b0446
-
SSDEEP
768:lPoGvw9AS5VebKWCk4ZudHYDPxLLLLLvXh:J9v27mKWCk4UOXh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource traveldoc1__PEFILE__OFFSET=0xc492.bin
Files
-
traveldoc1__PEFILE__OFFSET=0xc492.bin.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: - Virtual size: 2.1MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 20KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE