Static task
static1
Behavioral task
behavioral1
Sample
4b6701e95ca720e766507cecc687f4c218fe75ddb214fe2c20b4e541985baae1.exe
Resource
win10v2004-20240508-en
General
-
Target
4b6701e95ca720e766507cecc687f4c218fe75ddb214fe2c20b4e541985baae1
-
Size
2.3MB
-
MD5
266104763d8c419f77e33cccbbe82568
-
SHA1
a68a3028a3aa6df122d1d5e6814da4b69f4e71fc
-
SHA256
4b6701e95ca720e766507cecc687f4c218fe75ddb214fe2c20b4e541985baae1
-
SHA512
640fa1e92ea1de27c1e9cb6288d0150d3948b59f9f08730b7d1a24ee8f7ba0b1649f4817dd2d77ebcb74f88022d2f5de74d12263692dd91af6d36d17305f391a
-
SSDEEP
49152:C+9Zv9ysxAw3Qq+Esvc/qQoyGeRNtCl/ZNHHY8Jy:CiZlbxr+EBqQoxeRNcl/ZNHHY8J
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4b6701e95ca720e766507cecc687f4c218fe75ddb214fe2c20b4e541985baae1
Files
-
4b6701e95ca720e766507cecc687f4c218fe75ddb214fe2c20b4e541985baae1.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 685KB - Virtual size: 1.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 2.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
qwzbwjez Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ehyboqmy Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE