Static task
static1
Behavioral task
behavioral1
Sample
9099adc711777995aefcfa491405e8d871041c68caceca11291ec7f1ce497adf.exe
Resource
win10v2004-20240508-en
General
-
Target
9099adc711777995aefcfa491405e8d871041c68caceca11291ec7f1ce497adf
-
Size
2.3MB
-
MD5
49e293ef805471b58b1dcaaf1946ffc1
-
SHA1
f1bc6cd00562643fcf1f18a98de46ec3b288269d
-
SHA256
9099adc711777995aefcfa491405e8d871041c68caceca11291ec7f1ce497adf
-
SHA512
40f0962658b7317d0c2601b3b821f45b380fa20c4a8ed73f1c2454b9c7ee950e1043d4ca53eb17491a26f5492a4fbec8b0938f15cba832938e8d7e3ceeb8cee9
-
SSDEEP
49152:mdr9k06kEiDNBRuRyGlD3wM4czG9by2N9yc3kGROeQzffwvHNQ:mdmTk1hXusk14WG9MvNesfIvHNQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 9099adc711777995aefcfa491405e8d871041c68caceca11291ec7f1ce497adf
Files
-
9099adc711777995aefcfa491405e8d871041c68caceca11291ec7f1ce497adf.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 685KB - Virtual size: 1.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
epwcfxvu Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
iakaxvbo Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE