Static task
static1
General
-
Target
1Spoofer.rar
-
Size
5.9MB
-
MD5
3a97b2f65757fe178d986cef3dfffb48
-
SHA1
de793fd90ef4aa6d6934236e2868eb6b340e3d43
-
SHA256
5b827239d21531b138510bf6098dfcbe0afeb69475718deb22c6b1be6e0a6441
-
SHA512
dee924120b000d9c0f2510857965085762283d8142fd67062456e22f57f6172d1e730bde953582f499622b34bcd8e931c10a311bdce911d01634194adcb0c903
-
SSDEEP
98304:7xxHU8nRp7nY1H9bPE8sm66VoNWvODuBpUGxf7vZpofkMBl6Sr:7xxHU8zYl9bjsY6O+BGRRafPB9r
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/1Spoofer/1Spoofer.exe
Files
-
1Spoofer.rar.rar
Password: HWID
-
1Spoofer/1Spoofer.exe.exe windows:4 windows x64 arch:x64
Password: HWID
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 6.0MB - Virtual size: 6.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ