Static task
static1
Behavioral task
behavioral1
Sample
4a1b82e237dfd6a1795e2972a7ed8e1ccef0d52416c2f1880fc3daf4c83f5ecc.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
4a1b82e237dfd6a1795e2972a7ed8e1ccef0d52416c2f1880fc3daf4c83f5ecc.exe
Resource
win10v2004-20240730-en
General
-
Target
4a1b82e237dfd6a1795e2972a7ed8e1ccef0d52416c2f1880fc3daf4c83f5ecc
-
Size
3.5MB
-
MD5
11863b7144ba4e5af9b48fb03be2b99a
-
SHA1
eb1d991def74086cde38ec69f088ed3be34897f4
-
SHA256
4a1b82e237dfd6a1795e2972a7ed8e1ccef0d52416c2f1880fc3daf4c83f5ecc
-
SHA512
5f2a202833a27ea00b92a0ff8db94834b5ae2d52f5b3b8ff62b209cc5e231fabcae479d90b48d348ce241dbe92642c0d69728c839105b59df10a3888062d48e7
-
SSDEEP
98304:XTrinjMjQVDiMHTJuOQ4GK1BVaDDYbEU:X+jMjQL3PaDa
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4a1b82e237dfd6a1795e2972a7ed8e1ccef0d52416c2f1880fc3daf4c83f5ecc
Files
-
4a1b82e237dfd6a1795e2972a7ed8e1ccef0d52416c2f1880fc3daf4c83f5ecc.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.Upack Size: - Virtual size: 148KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 25KB - Virtual size: 56KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE