C:\Users\PC\source\repos\dropper\dropper\obj\Release\dropper.pdb
Static task
static1
Behavioral task
behavioral1
Sample
013a7b2fd38147faa31fff963dc3345e805d98dcdc33f52947dbf48b9f7109ce.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
013a7b2fd38147faa31fff963dc3345e805d98dcdc33f52947dbf48b9f7109ce.exe
Resource
win10v2004-20240704-en
General
-
Target
013a7b2fd38147faa31fff963dc3345e805d98dcdc33f52947dbf48b9f7109ce
-
Size
5KB
-
MD5
c7e64d68b673c2137f51ace3cce1f4aa
-
SHA1
91230110a8a84e3f6b9e600e20641f43f8f8b5d2
-
SHA256
013a7b2fd38147faa31fff963dc3345e805d98dcdc33f52947dbf48b9f7109ce
-
SHA512
62d5ed7a0ab639df162ac686310dee7921b673cc65db91de7c69794c6cb43480b56e00fffe42f5e1ea07fd49a9151fd776c93cbd6050ea06cf6887b24dfb95dd
-
SSDEEP
48:6iTVOA1uOCE08lnqSMcwGWdKYVqW6NM7rVbYtXXuFQSpfrtFXIPVybY3cZsFtR+5:VuOZlNOpq0rwuLqPVyOKxnazNt
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 013a7b2fd38147faa31fff963dc3345e805d98dcdc33f52947dbf48b9f7109ce
Files
-
013a7b2fd38147faa31fff963dc3345e805d98dcdc33f52947dbf48b9f7109ce.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ