Static task
static1
Behavioral task
behavioral1
Sample
4c81475320e48a5ba2d483e200d1e5748fba7596ca3df92d4e803464bb186965.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
4c81475320e48a5ba2d483e200d1e5748fba7596ca3df92d4e803464bb186965.exe
Resource
win10v2004-20240611-en
General
-
Target
4c81475320e48a5ba2d483e200d1e5748fba7596ca3df92d4e803464bb186965
-
Size
580KB
-
MD5
e3f571bd6aea26e6f2721cd147e3aeac
-
SHA1
3cffb12aeebff9c1260b333c980a028f2403c677
-
SHA256
4c81475320e48a5ba2d483e200d1e5748fba7596ca3df92d4e803464bb186965
-
SHA512
1cfdf95374a749e44ca3fb488ca2ce9fa52a60bf50d9d21f5df1ee5927d0a7fb8ef5d24c6f65b4fd6c4cb893ff97e3a1cdc5201b288619d670425ccbb382123f
-
SSDEEP
12288:eDYaW1FIIt8pBFlCVvAFCVMEBJ1UN5sg8YbbWKBQ:eDYr1Fxt8L5FgLSH8Y
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 4c81475320e48a5ba2d483e200d1e5748fba7596ca3df92d4e803464bb186965
Files
-
4c81475320e48a5ba2d483e200d1e5748fba7596ca3df92d4e803464bb186965.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 576KB - Virtual size: 576KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ