Static task
static1
Behavioral task
behavioral1
Sample
768826fa4fff991467ab691afdf74d542c4d7ef60d0256cc2961e40f52c876d2.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
768826fa4fff991467ab691afdf74d542c4d7ef60d0256cc2961e40f52c876d2.exe
Resource
win10v2004-20240802-en
General
-
Target
0cef3efb5efc0bb905a72a4312a725fd.zip
-
Size
127KB
-
MD5
52603f9fbb267f093f88613955adca40
-
SHA1
2f82e0021640ee949bb37f789b9b3c31021555d7
-
SHA256
af0619e96d0f887503b9b081bb0135a03176112248a2e5285751ad85550c29bb
-
SHA512
4a7bb2ed9b89fe81075bf2e1a9a3a04fd6d2c196871ccbbd12deedddba6d56e8323d339cfd54d91d709c32650406759a15e42d9bdb01b05df6fe455b58a2847b
-
SSDEEP
3072:BNkSKdy/R/z1yi69lQ9QUAn5cly+SWPGpRd8k4J:HB/hyi/9Q6CWupRA
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/768826fa4fff991467ab691afdf74d542c4d7ef60d0256cc2961e40f52c876d2
Files
-
0cef3efb5efc0bb905a72a4312a725fd.zip.zip
Password: infected
-
768826fa4fff991467ab691afdf74d542c4d7ef60d0256cc2961e40f52c876d2.exe windows:4 windows x86 arch:x86
Password: infected
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 172KB - Virtual size: 168KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ