Static task
static1
Behavioral task
behavioral1
Sample
b790c46db5c8c6e49bd952cfb644131b6b8d452587e96ccfcc8c6aff5c5f06db.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b790c46db5c8c6e49bd952cfb644131b6b8d452587e96ccfcc8c6aff5c5f06db.exe
Resource
win10v2004-20240508-en
General
-
Target
b790c46db5c8c6e49bd952cfb644131b6b8d452587e96ccfcc8c6aff5c5f06db
-
Size
12KB
-
MD5
27cf8c63b1ae9d183021783ac9e1c5d9
-
SHA1
5e493bcdf3a9a2dbcaaddc8892435351f1c96b03
-
SHA256
b790c46db5c8c6e49bd952cfb644131b6b8d452587e96ccfcc8c6aff5c5f06db
-
SHA512
5d9a1dff6ff8e72b39dccaed8f043411391353492887e9f23ff8cb5c3f1a1472a68250ae5e7a12f0096c28ac91c9c43e30b2c8ad4b2fad2ac5863b2c50d066ac
-
SSDEEP
384:SL7li/2zHq2DcEQvdhcJKLTp/NK9xa6O:MjM/Q9c6O
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b790c46db5c8c6e49bd952cfb644131b6b8d452587e96ccfcc8c6aff5c5f06db
Files
-
b790c46db5c8c6e49bd952cfb644131b6b8d452587e96ccfcc8c6aff5c5f06db.exe .ps1 windows:4 windows x86 arch:x86 polyglot
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ