Static task
static1
Behavioral task
behavioral1
Sample
2ccefbf7d505a3bcceb5bae20a5ecf9a55a189730150cb22aa27d8b5685bd249.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2ccefbf7d505a3bcceb5bae20a5ecf9a55a189730150cb22aa27d8b5685bd249.exe
Resource
win10v2004-20240508-en
General
-
Target
2ccefbf7d505a3bcceb5bae20a5ecf9a55a189730150cb22aa27d8b5685bd249
-
Size
320KB
-
MD5
6f018709fc49e1e923e8466edda0d052
-
SHA1
f6f16486f90e12d06fdfbc4f7caf2ffc8a892bc1
-
SHA256
2ccefbf7d505a3bcceb5bae20a5ecf9a55a189730150cb22aa27d8b5685bd249
-
SHA512
5081ccab38e1cf0410990eb44d19b7d5166753f06d1b41f768f107b9a482f27ed4e09307be2624a540a79c5bb95b399c63d3f85b246c71e9b7d890eb00a49dfa
-
SSDEEP
6144:j8wRDtnE3mytH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:wwA31N2EB0NxDIBuOFe7/uT
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2ccefbf7d505a3bcceb5bae20a5ecf9a55a189730150cb22aa27d8b5685bd249
Files
-
2ccefbf7d505a3bcceb5bae20a5ecf9a55a189730150cb22aa27d8b5685bd249.exe windows:4 windows x86 arch:x86
8a62619ef49b00443f01cc1e1d35bf87
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
IsBadCodePtr
Module32Next
GetPrivateProfileSectionA
GetEnvironmentStringsA
GetCommTimeouts
DeleteFileA
VerifyConsoleIoHandle
SetSystemPowerState
VirtualProtect
GetStartupInfoA
GetTempPathW
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 42KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.brdata Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tc Size: 244KB - Virtual size: 244KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE