Static task
static1
General
-
Target
default browser.exe
-
Size
8.3MB
-
MD5
4de245e75fd95ad8fba1e2c767a02a36
-
SHA1
1abd31803500753bbcde06806160ae3dccce0c02
-
SHA256
9a565f35fd43c7f7a365759a2006a6c6362d266b7ffa6ccb61a519341608de98
-
SHA512
cfdb0b2bd6949ad8335e00c057f73cd3c36b7316b00da31194ed3a269cd8eb30ecc9f86fa04bff086e7770a116e15ef62b302b35d002f3c6fe2b13465d17e127
-
SSDEEP
196608:zj2l1RHtvhUrhNk0GPBweNgMdBmv3H/oNpmYi3C4Qi77j+q:zj2RNvhmhSZPBjmMdBm/gODSS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource default browser.exe
Files
-
default browser.exe.exe windows:6 windows x64 arch:x64
1a076a2b465b1b6689354f2b4d9f6c82
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
kernel32
VirtualFree
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
GetModuleHandleA
LoadLibraryA
GetProcAddress
shell32
ShellExecuteA
ws2_32
gethostbyname
ntdll
RtlCaptureContext
crypt32
CertOpenSystemStoreW
Sections
.text Size: - Virtual size: 3.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 891KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 43KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: - Virtual size: 131KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.a6u Size: - Virtual size: 6.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.&ex Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.sdQ Size: 8.3MB - Virtual size: 8.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ