Static task
static1
Behavioral task
behavioral1
Sample
99779c72c0c207bb78b6f7f08dd8a7090134b55b2205d702848735b4ebc6d500.exe
Resource
win10v2004-20240704-en
General
-
Target
99779c72c0c207bb78b6f7f08dd8a7090134b55b2205d702848735b4ebc6d500
-
Size
1.8MB
-
MD5
f9573ea78423cd558430ea5c68acda23
-
SHA1
5db0f6c69986010fd9f47f3151d55ecaccdc1826
-
SHA256
99779c72c0c207bb78b6f7f08dd8a7090134b55b2205d702848735b4ebc6d500
-
SHA512
5a0ea521f9945e9f6bdfa5e207ce608843a338e27917daad730083ffdce4088157e20046b473ecba327504a99313c1fba3fd5aee9e0b35814074f0d8ab10a730
-
SSDEEP
49152:CVcN3UrJXkShZyPH65in/WnwQ4Uc7pD012MO:ccZUrVVgPjn/WnwXf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 99779c72c0c207bb78b6f7f08dd8a7090134b55b2205d702848735b4ebc6d500
Files
-
99779c72c0c207bb78b6f7f08dd8a7090134b55b2205d702848735b4ebc6d500.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 183KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
eiweashi Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
afavgjti Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE