Static task
static1
Behavioral task
behavioral1
Sample
3c6a162cd3e748142504889df5b686d24200d5d2d683ba5ff3c26660838d5d86.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
3c6a162cd3e748142504889df5b686d24200d5d2d683ba5ff3c26660838d5d86.exe
Resource
win10v2004-20240508-en
General
-
Target
3c6a162cd3e748142504889df5b686d24200d5d2d683ba5ff3c26660838d5d86
-
Size
541KB
-
MD5
c91ba4f1a8af329b074b9cb61ce4af8e
-
SHA1
6f4aab1d7c2fd14b8ca127f2e98e4b9da420155c
-
SHA256
3c6a162cd3e748142504889df5b686d24200d5d2d683ba5ff3c26660838d5d86
-
SHA512
f4de729b5dc0e2a990ebf73cbb8a5ab05f5e0b9488f57772908ad4a1a814c19ce84811b32b5df95bbce012e0dec8216a235fe1a7e7795848947f9863d86250c0
-
SSDEEP
6144:UCn7m7fGtlqdhhhE5xzQFP637zA2cYedU+rbCVayMa2b4kKYSzZXLvKHsQ2b7/wt:iGtlqboh7zBcA+/Rx8JZXgsG
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3c6a162cd3e748142504889df5b686d24200d5d2d683ba5ff3c26660838d5d86
Files
-
3c6a162cd3e748142504889df5b686d24200d5d2d683ba5ff3c26660838d5d86.exe windows:6 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.MPRESS1 Size: 379KB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.MPRESS2 Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 159KB - Virtual size: 158KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE