cQfN.pdb
Static task
static1
Behavioral task
behavioral1
Sample
AWB 1311072433.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
AWB 1311072433.exe
Resource
win10v2004-20240704-en
General
-
Target
09072024_1337_09072024_AWB 1311072433.Img.ace
-
Size
565KB
-
MD5
018f7a0fdeee1dad81d6d12674234849
-
SHA1
1bfde5907b3df3b5a504789412e7d34e0aebc65e
-
SHA256
410c814cf0f32f5231e6b471da182deea2d587fe14b52a5ef3aa84b1a2c181a3
-
SHA512
d4af6d1d749c8f739c54ca8c16e4bd935fe84544ab985cce63cddd1fdc6bbe9c6c65cbd9c0ca4250a9debb8bcd2df6ba817ebd29806312da5bb9a619f13a5ae3
-
SSDEEP
12288://2VZfpZgOqUo3eisYdvFw0oVUtAfeDSlLMY9Aswrlr3kng:/oZgRsYEUyeDkMYy35r0ng
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack002/AWB 1311072433.exe
Files
-
09072024_1337_09072024_AWB 1311072433.Img.ace.ace
Password: infected
-
out.ace.ace
Password: infected
-
AWB 1311072433.exe.exe windows:4 windows x64 arch:x64
Password: infected
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Sections
.text Size: 576KB - Virtual size: 576KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ