Static task
static1
Behavioral task
behavioral1
Sample
ee0230b62df2e4b6ec5e3528620b7ceee6735fed15387d21c5f8feaad122835a.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
ee0230b62df2e4b6ec5e3528620b7ceee6735fed15387d21c5f8feaad122835a.exe
Resource
win10v2004-20240508-en
General
-
Target
ee0230b62df2e4b6ec5e3528620b7ceee6735fed15387d21c5f8feaad122835a
-
Size
8.6MB
-
MD5
105a2ba8b5d9979c2c9a899e689af728
-
SHA1
866877c474881caba02cd309db1af1846028f702
-
SHA256
ee0230b62df2e4b6ec5e3528620b7ceee6735fed15387d21c5f8feaad122835a
-
SHA512
d6e97e7cf7fb68c7ac5a0e27a14effc7af4ed0279723b9f4d1eaee086e7526774f7915ae887d687bd5a36eef3884ee5bff2756dc6b40562c2afb3b2f0a95cffd
-
SSDEEP
196608:7AZ/zoE95QUyL0L6p9hdYWZbi8aH0qTos8ouEXTCw1FH7J8Z:7AZkE9G46PhdYou8iBT41EX+w1FHuZ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ee0230b62df2e4b6ec5e3528620b7ceee6735fed15387d21c5f8feaad122835a
Files
-
ee0230b62df2e4b6ec5e3528620b7ceee6735fed15387d21c5f8feaad122835a.exe windows:4 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
.text Size: 620KB - Virtual size: 5.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 14KB - Virtual size: 16KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE