Static task
static1
General
-
Target
Wind V2.exe
-
Size
2.2MB
-
MD5
9f984751bb023d8b639f36fa0028a184
-
SHA1
1db79795a6d75e8fd7825f9171c2e62ff15f47ff
-
SHA256
0f23fa7509726237a4f83491887c471c3dc03f73ea3f2e54766cb6533a156a36
-
SHA512
23d7e12eccbc2a25f4d788e885ea6e5970ead69080661647d0413f2b5a77af3cdfe2c5226fb5b1cec3e65f6696ebb67d4b2f56a871fe18ae68d08a2094ea3147
-
SSDEEP
49152:gwTd9LHtB+GcVpv3BBi0+Lt833gPXQmlkJFPmUUhLpWx74A5YZSeV5uVY:gKHQpve0+LqYXnyoDLpS74AC5V5
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Wind V2.exe
Files
-
Wind V2.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 2.2MB - Virtual size: 2.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ