Static task
static1
Behavioral task
behavioral1
Sample
ef85ee945c0c4713ee502e597c4b11f02d51d0b2f04112ff699662093349c798.exe
Resource
win7-20231129-en
General
-
Target
ef85ee945c0c4713ee502e597c4b11f02d51d0b2f04112ff699662093349c798
-
Size
394KB
-
MD5
7d7be8aae6008ed64716476b06c1d783
-
SHA1
19306cb4773938f1998c5732f8472a8e132e6606
-
SHA256
ef85ee945c0c4713ee502e597c4b11f02d51d0b2f04112ff699662093349c798
-
SHA512
e87cd8336060f02f2ccfc59747a8e476740494d5097a1daa47f0c6fe6bd8d3d9a0196141fc179b9aaf75911240236eccd93f66415fde22cd813341400faa994d
-
SSDEEP
6144:n3C9BRIG0asYFm71mPfkVB8dKwaO5CVwOlz:n3C9uYA7okVqdKwaO5CVz
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource ef85ee945c0c4713ee502e597c4b11f02d51d0b2f04112ff699662093349c798
Files
-
ef85ee945c0c4713ee502e597c4b11f02d51d0b2f04112ff699662093349c798.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 47KB - Virtual size: 156KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
petite Size: 274B - Virtual size: 274B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ