Static task
static1
Behavioral task
behavioral1
Sample
2024-06-14_4a38ede90c924aa5e3e2e1dc67f432e1_nokoyawa.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-14_4a38ede90c924aa5e3e2e1dc67f432e1_nokoyawa.exe
Resource
win10v2004-20240508-en
General
-
Target
2024-06-14_4a38ede90c924aa5e3e2e1dc67f432e1_nokoyawa
-
Size
38KB
-
MD5
4a38ede90c924aa5e3e2e1dc67f432e1
-
SHA1
2f88914130f08712a3fecea34fd6e4993f58c2c1
-
SHA256
58baea354fb8318158364b476a5e7b7662f4c56b6d71219b324d3c1a14b7f909
-
SHA512
ab795c8f2e4bc7458a64447babdda3f93d12a2e229939e97ccbed36f15a096c521b34b57359f901d29a4d1aa2c30f8de61e06abad1c4222485d5612ae79ab213
-
SSDEEP
768:UMs3yBEgMYosM5Ar/xY6Xc4FSimT3oDz/KVA5m1q:vdB5bM5Ar/S6Xc4FnmT3oDz/KV
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 2024-06-14_4a38ede90c924aa5e3e2e1dc67f432e1_nokoyawa
Files
-
2024-06-14_4a38ede90c924aa5e3e2e1dc67f432e1_nokoyawa.exe windows:6 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 31KB - Virtual size: 31KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 1024B - Virtual size: 828B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ