Static task
static1
Behavioral task
behavioral1
Sample
ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1.dll
Resource
win10v2004-20240802-en
General
-
Target
ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1
-
Size
74KB
-
MD5
22ee7cd93caa99ae801404519d41ad8a
-
SHA1
fc861f02c90cdf591ea8c8cd326a45b834504562
-
SHA256
ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1
-
SHA512
3e7fc5b4ca28d829ac38e6397a413d661a085848c7f69f39fe662153b05a1e3169ed085b599362ad99b5cf1ba8cb084612a85ed797784d1845ff453a8c037c88
-
SSDEEP
1536:9nJ2+82YLrxTRfIU3D9s8B2zAv1WOVy2vPiTlKbLOhLp:VT3YnxTRf7ZsM28dvy2vPiTlKbLOBp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1
Files
-
ffa7a8bd303db45f8d4a6cb37d3f7f8b9431c6bc64950347b94db9812d3598c1.dll windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Sections
?t'5+ Size: 30KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 41KB - Virtual size: 41KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ