Static task
static1
Behavioral task
behavioral1
Sample
Ii4XtPGi5n3AWmt.exe
Resource
win7-20240708-en
General
-
Target
Ii4XtPGi5n3AWmt.exe
-
Size
689KB
-
MD5
1965f06fb4c6e169c7014c90c5b93199
-
SHA1
a8a949da0262c8165e52fd84276b0f299a86db2b
-
SHA256
8c92b39496a1f938d9c16ad3e1a7948b48923fd028e23a422c5bf8f0b7e1138b
-
SHA512
f00216c9c9b5051b432d939217dfd90ecf7e6f0373f48db018c9e9faa6b25a56db496a125a9a53ffd5660283db92d36a32671725b84652d3100d1e60d9dc2746
-
SSDEEP
12288:z4UkfadvMq2bjiwAszlTRPipvBjxOqEEtMcLsfSbASQi8N0DjmEuv3/s0z3/rO:EUjVKmw5TZgkItMcLsfSbMqLwPb/r
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Ii4XtPGi5n3AWmt.exe
Files
-
Ii4XtPGi5n3AWmt.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 680KB - Virtual size: 680KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ