Static task
static1
Behavioral task
behavioral1
Sample
5beea4859a7685e160bb1a5ec07e9ea3b9722b3b969f71ea9b975fadb8ae5c08.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
5beea4859a7685e160bb1a5ec07e9ea3b9722b3b969f71ea9b975fadb8ae5c08.exe
Resource
win10v2004-20240611-en
General
-
Target
5beea4859a7685e160bb1a5ec07e9ea3b9722b3b969f71ea9b975fadb8ae5c08
-
Size
6.1MB
-
MD5
9c9107135e9ec7f4e655d470c6777d58
-
SHA1
f98e4a440dd7101714e1ff205d23931dce5b495c
-
SHA256
5beea4859a7685e160bb1a5ec07e9ea3b9722b3b969f71ea9b975fadb8ae5c08
-
SHA512
007c9c8785f7d9a0b20932cc6debfaf8c8080a0ea54f1dd7984fcf24c089283408f5fe8bc0376b28fb1d41788f7afc821a0a298d8258a54e4834a24f4c8700d9
-
SSDEEP
98304:iiyAWm5LKW91+MBH8UUZPUnTexhPYNKpwhuTAUYzzr9uZwO+1BkAsBHtdxat6:iw5LLIT+TexhwNKKMokZz4vqdx3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5beea4859a7685e160bb1a5ec07e9ea3b9722b3b969f71ea9b975fadb8ae5c08
Files
-
5beea4859a7685e160bb1a5ec07e9ea3b9722b3b969f71ea9b975fadb8ae5c08.exe windows:4 windows x86 arch:x86
baa93d47220682c04d92f7797d9224ce
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
comctl32
InitCommonControls
Sections
Size: 5.0MB - Virtual size: 22.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 4KB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xcdtaefi Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
dzdjctpr Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE