Static task
static1
General
-
Target
WeMod-Setup.exe
-
Size
141KB
-
MD5
576ac1f8e07a48928156131fcff9f0b0
-
SHA1
1d50f2e7d9d0769bac416a636084c514947d4e1d
-
SHA256
0c9f369354ca26f78d6af1b356787653503377d91e6e39327b945dd583d4c873
-
SHA512
0c6c8eb1fa037375d0ce5e82e635338e0190c9f954c011c8d1b743f56fee55493bd5ea5954b4a93e2df55bca6d338e0b871c40b281beccb0b0c3bec71987c8d8
-
SSDEEP
3072:XGjm4ILlCI+4COHCyhaEtHZugr7t4ILlCI+4TOHHSTs:Xr+bwaEtHBHto
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource WeMod-Setup.exe
Files
-
WeMod-Setup.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 103KB - Virtual size: 103KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 27KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ