Static task
static1
Behavioral task
behavioral1
Sample
40e12e3abb3ca8cde8e55da3bf215c6ef0c5d465c0a6d8f296552fb3c663ed5b.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
40e12e3abb3ca8cde8e55da3bf215c6ef0c5d465c0a6d8f296552fb3c663ed5b.exe
Resource
win10v2004-20240709-en
General
-
Target
40e12e3abb3ca8cde8e55da3bf215c6ef0c5d465c0a6d8f296552fb3c663ed5b
-
Size
2.1MB
-
MD5
8a5f6f7d8412269496261b0fdaab9a35
-
SHA1
6a2c80c7b7276cfad8f6f2a78e7043340b67c177
-
SHA256
40e12e3abb3ca8cde8e55da3bf215c6ef0c5d465c0a6d8f296552fb3c663ed5b
-
SHA512
370f2c4658c6984f3fd747c025a396a46b8f2bdd613a4ae8bec5cff331b6c3c5d79a8631c7fcd9f4ae6a3cc5e390a3ea0feda11d7f5635e9ad4af85936112f59
-
SSDEEP
49152:qKh/IYc2nRThVCO5fks1mY8BjC2wMcjWmh:bhAYcWxhV/mY8BjRiimh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 40e12e3abb3ca8cde8e55da3bf215c6ef0c5d465c0a6d8f296552fb3c663ed5b
Files
-
40e12e3abb3ca8cde8e55da3bf215c6ef0c5d465c0a6d8f296552fb3c663ed5b.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 2.0MB - Virtual size: 2.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ