Static task
static1
Behavioral task
behavioral1
Sample
c9101aac915418735b74d5120cae0cdef803555d9a8399cf9ee5457d5c790513.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
c9101aac915418735b74d5120cae0cdef803555d9a8399cf9ee5457d5c790513.exe
Resource
win10v2004-20240508-en
General
-
Target
c9101aac915418735b74d5120cae0cdef803555d9a8399cf9ee5457d5c790513.exe
-
Size
296KB
-
MD5
44fa1f9ac8f550bdf35405c89d1509f3
-
SHA1
6cd17ba8d06ef044fe6d788574a73d2522c3ae8a
-
SHA256
c9101aac915418735b74d5120cae0cdef803555d9a8399cf9ee5457d5c790513
-
SHA512
563f6300815482ce825eb2760bf63cbbdd3327b093a6d2648ffbc25365a9b9d62bd79564d106114a35ce188074615281c5487db65e0c4aa9764d7f7c226eb53a
-
SSDEEP
6144:7X5aN9UzT0jeayOka2IssdyIvh0QHOxBt25:FU+zbayOka1dyIvOoOxBt
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c9101aac915418735b74d5120cae0cdef803555d9a8399cf9ee5457d5c790513.exe
Files
-
c9101aac915418735b74d5120cae0cdef803555d9a8399cf9ee5457d5c790513.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 197KB - Virtual size: 196KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 98KB - Virtual size: 97KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ