Static task
static1
Behavioral task
behavioral1
Sample
News.exe
Resource
win7-20240705-en
General
-
Target
News.Exe
-
Size
73KB
-
MD5
be488e5157902bc9d0b920863d4405e9
-
SHA1
c7fcb865c0591a3b095a6384a189882144d7dfe6
-
SHA256
7376d155a75df53c85fbea9d9576e1cb004352102c7266c0f0b8ef60f60c8a25
-
SHA512
f0a2caaa72d35b2faaa36e7347f3b46c545ea0bdcaf7589bb6af72d0df1cecab2bd7d2bbe5d1cad87fa36d9d39e8a17df4ffd472f680a47dc4373a0c817bdb9a
-
SSDEEP
1536:MhJq9QuBn6bcNr6KcHwRc3lbVbxKrUM3+6tkhE39pWIEHyv5JXH3W+DqVqHGKEY1:MW9QuBnYZIrTV+WtpPE4V3W+eVqHWYyY
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource News.Exe
Files
-
News.Exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 60KB - Virtual size: 60KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ