Static task
static1
Behavioral task
behavioral1
Sample
5c265cbc49ddf06d55beee7ca88c6046926f62b75c5ed1dc902b84b3960260c9.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
5c265cbc49ddf06d55beee7ca88c6046926f62b75c5ed1dc902b84b3960260c9.exe
Resource
win10v2004-20240802-en
General
-
Target
5c265cbc49ddf06d55beee7ca88c6046926f62b75c5ed1dc902b84b3960260c9
-
Size
19KB
-
MD5
040d0f8529d1e9fb266dd5a73736f982
-
SHA1
223563602ce92ae3030017519759f2aa5a933565
-
SHA256
5c265cbc49ddf06d55beee7ca88c6046926f62b75c5ed1dc902b84b3960260c9
-
SHA512
954053651aab380be552ec382226a2b259ef4c1cc1404f952cc37bf2585107f6e768fea78c4ea59966ffea8c6ddce352435dc3686e6a47c14e34d61873766b10
-
SSDEEP
384:RQZqSstnLmJ1d6dzkT8OwNrSfB73TtWMiS2R3Xbr17vvxlL:KqSsE1EdgT8rgDtWfSW3Lx7D
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5c265cbc49ddf06d55beee7ca88c6046926f62b75c5ed1dc902b84b3960260c9
Files
-
5c265cbc49ddf06d55beee7ca88c6046926f62b75c5ed1dc902b84b3960260c9.exe windows:5 windows x86 arch:x86
7bef13f58538df84f5270fe7542e9811
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetModuleHandleA
GetProcAddress
user32
SetTimer
shell32
ShellExecuteExW
ole32
CoInitializeEx
psapi
GetModuleBaseNameW
shlwapi
StrStrNIW
ntdll
memset
advapi32
RegFlushKey
Sections
.MPRESS1 Size: 15KB - Virtual size: 172KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.MPRESS2 Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE