??4CLogger@@QAEAAV0@ABV0@@Z
??4CTextLogger@@QAEAAV0@ABV0@@Z
Behavioral task
behavioral1
Sample
a8e748e4eb0ef0f62a82a160ad8f60022eae4b423e2da6fc92954809fbf383cf.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
a8e748e4eb0ef0f62a82a160ad8f60022eae4b423e2da6fc92954809fbf383cf.exe
Resource
win10v2004-20240226-en
Target
a8e748e4eb0ef0f62a82a160ad8f60022eae4b423e2da6fc92954809fbf383cf
Size
3.5MB
MD5
fedc9f6a0f54d23b3b8e51ed350feb94
SHA1
442ec080cb907a06ec9855ee1df879c193939c6d
SHA256
a8e748e4eb0ef0f62a82a160ad8f60022eae4b423e2da6fc92954809fbf383cf
SHA512
e6aa314ecc949442853bbe01ca4c8eabd824758950cfc57fb3f20542bb04d647d260f3dfdb8cb159a5861b675543fd9786a33351e308a131be18504cae71331c
SSDEEP
98304:qaVCbsiKvaAoAYY+1JhGvBDRebnXsM2l+yedYUj/7:qa+sni7tEDRebE+RYQT
resource | yara_rule |
---|---|
sample | themida |
Checks for missing Authenticode signature.
resource |
---|
a8e748e4eb0ef0f62a82a160ad8f60022eae4b423e2da6fc92954809fbf383cf |
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
??4CLogger@@QAEAAV0@ABV0@@Z
??4CTextLogger@@QAEAAV0@ABV0@@Z
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_READ