Static task
static1
Behavioral task
behavioral1
Sample
f795d042d8b370fef35632c46c8b99d719e9e323bee75267da83e91fb2ab8daf.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
f795d042d8b370fef35632c46c8b99d719e9e323bee75267da83e91fb2ab8daf.exe
Resource
win10v2004-20240709-en
General
-
Target
f795d042d8b370fef35632c46c8b99d719e9e323bee75267da83e91fb2ab8daf
-
Size
1.4MB
-
MD5
0db0c91c793c7ef119a032ec663c3113
-
SHA1
7efaca09c78f46999bc70f524bcf745fc8dfa83f
-
SHA256
f795d042d8b370fef35632c46c8b99d719e9e323bee75267da83e91fb2ab8daf
-
SHA512
ef8372eca32b2035ee94cc0250d38511342ec74fc0f113bbe03cc82d30c7e4bb59ca2461b6d7cfcea2f95607c5f832ccec2f270367670c6d3ddf7d8c2c320497
-
SSDEEP
24576:Nw8KH/B1FBgDXZNFfZoWe0KVIC9ClKa5IrykTHhQ5NoRyftZZriXWzr6pfKuI:rK51rgXteP3Vz9oI2mhoNosVDP+fX
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f795d042d8b370fef35632c46c8b99d719e9e323bee75267da83e91fb2ab8daf
Files
-
f795d042d8b370fef35632c46c8b99d719e9e323bee75267da83e91fb2ab8daf.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.Upack Size: - Virtual size: 152KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE