Static task
static1
Behavioral task
behavioral1
Sample
549462b62c2ed08edda8c8575eeb6d7dd7a7f4c3c0aee10a8c213f5b21c33161.exe
Resource
win10v2004-20240802-en
General
-
Target
549462b62c2ed08edda8c8575eeb6d7dd7a7f4c3c0aee10a8c213f5b21c33161
-
Size
1.8MB
-
MD5
35def34cb26c5f9c76665becc235b9ab
-
SHA1
1de5583a425fff859db47d52903f167897c59d38
-
SHA256
549462b62c2ed08edda8c8575eeb6d7dd7a7f4c3c0aee10a8c213f5b21c33161
-
SHA512
2da6ab7dbc13aed261fd403a27d5b8faf0c0781f4ab41d8263d378b9b511b4f6b16a65c85e5167868733f4ff11018e3b2e45fd4032f9cedc34a02861d241a4b6
-
SSDEEP
24576:v3fhkYSL9AHBSqJ5nLZhc/OH5lR9Jog1rPGA27hygnk4jTkqdfbRdCqFrsrWRtxW:aKhSqJ5ndVpuA8hy94Jb/BArWhW
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 549462b62c2ed08edda8c8575eeb6d7dd7a7f4c3c0aee10a8c213f5b21c33161
Files
-
549462b62c2ed08edda8c8575eeb6d7dd7a7f4c3c0aee10a8c213f5b21c33161.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 183KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
doqytwpy Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
vvhzfxyc Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE