Static task
static1
Behavioral task
behavioral1
Sample
d23a0ba9884bbf00e70c1f05ee81b54915a6009dea308cd66bba30c58265d2b9.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
d23a0ba9884bbf00e70c1f05ee81b54915a6009dea308cd66bba30c58265d2b9.exe
Resource
win10v2004-20240226-en
General
-
Target
d23a0ba9884bbf00e70c1f05ee81b54915a6009dea308cd66bba30c58265d2b9
-
Size
22KB
-
MD5
224c0fba2d729a7d12653a93c096ef5c
-
SHA1
010fbc800c7a85ba3b6022206a7fa342bfd0721d
-
SHA256
d23a0ba9884bbf00e70c1f05ee81b54915a6009dea308cd66bba30c58265d2b9
-
SHA512
6dc6ef224f7555a8faeb78b42137895b7120f60e7284d7d12bfb6b9402d0d912a859a3b2719f1294c8c27ae615337f382d35d612c7d1a9cf70c6172c16871670
-
SSDEEP
384:bbQ+n3LntdA0PsZDpNx6pIpfjk8zUnZxhmDblVIRQCJogvY8UJydNk:HQ+bntdUZD16pof4mulmDblVAQ4ogDjk
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d23a0ba9884bbf00e70c1f05ee81b54915a6009dea308cd66bba30c58265d2b9
Files
-
d23a0ba9884bbf00e70c1f05ee81b54915a6009dea308cd66bba30c58265d2b9.exe windows:4 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
.text Size: 13KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE