Static task
static1
Behavioral task
behavioral1
Sample
b426fb242cad37c9c0f550ff8c389a40N.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
b426fb242cad37c9c0f550ff8c389a40N.exe
Resource
win10v2004-20240802-en
General
-
Target
b426fb242cad37c9c0f550ff8c389a40N.exe
-
Size
120KB
-
MD5
b426fb242cad37c9c0f550ff8c389a40
-
SHA1
81062217d610dfea5f9eb07a39934168559a496b
-
SHA256
352eddeb05eb3746678c8ebd0e40d720b18e054b71ba766bb2c816d40a1f0913
-
SHA512
b5fdf7245bab484b5f0d3e14c07d4929cf559d980d9cedb365f103bd1a6f59313c396bde3382351f6de6fcfb1b30818f79351cbd737ae7354c10548611e24730
-
SSDEEP
384:ZjHPN7JMscu77vukbVHUdwG1My9ibxaIyYM:Z57JMscojuIVHUdwG1My9ibxaIyYM
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b426fb242cad37c9c0f550ff8c389a40N.exe
Files
-
b426fb242cad37c9c0f550ff8c389a40N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 352B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.htext Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE