Static task
static1
Behavioral task
behavioral1
Sample
d0a9cd1821525f56ddd72540c92e7170N.exe
Resource
win7-20240704-en
General
-
Target
d0a9cd1821525f56ddd72540c92e7170N.exe
-
Size
280KB
-
MD5
d0a9cd1821525f56ddd72540c92e7170
-
SHA1
d43e00b1f8534a15b0e4ba375b9de2e33ab5cee7
-
SHA256
32592d0a4ec9b0fc03f0ec38cc9289634a075640e335a01f4c70b19f42b14729
-
SHA512
1fa0c5d4ff2bc532b9feab8ee4d8e1f1e0af2d4927eb348f6ee1d6adcb6443e33a22b67a9fd85372087350b563ae72b7826326df8273eacbc6ce8df3770fd138
-
SSDEEP
6144:boy5p178U0MURaGyNXYWQzHazRfXrwSRnWwhrQ66fKK:boSeGUA5YZazpXUmZhZ6SK
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource d0a9cd1821525f56ddd72540c92e7170N.exe
Files
-
d0a9cd1821525f56ddd72540c92e7170N.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 238KB - Virtual size: 237KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 1024B - Virtual size: 772B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 21KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ