PCPp.pdb
Static task
static1
Behavioral task
behavioral1
Sample
PO-070724-WA00002.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
PO-070724-WA00002.exe
Resource
win10v2004-20240611-en
General
-
Target
PO-070724-WA00002.exe
-
Size
720KB
-
MD5
02cf751cfb4a32f5fc312d5b28505834
-
SHA1
3e301394a596e1821027fa304ae054c4e214be2a
-
SHA256
0f332fd82cac206ac5ad266b95ec432b85b285317709ea00ee5f31648a1fc512
-
SHA512
dcb983fc89aee31651f6fe9d5aa3ccfe1064c303f3a9766fe1b616931f15c31c03fcfba27a8e13b6f5e7a0a12835081e60bb71fbd68ba0303285d68cc4d79aed
-
SSDEEP
12288:05xFWhx+o6qYYGuo60Yl4YZG+naO+Bspp1pJ49rzviorohW5+X/oQ3M759DDxJBJ:KxF7uVp0Yl0iaO+m941vihhu+1877r3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource PO-070724-WA00002.exe
Files
-
PO-070724-WA00002.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Sections
.text Size: 718KB - Virtual size: 718KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ