Static task
static1
Behavioral task
behavioral1
Sample
9016150b84e91ddc0d02055e5ccc264126caa44cd7bb651f1f84a39b390f6011.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
9016150b84e91ddc0d02055e5ccc264126caa44cd7bb651f1f84a39b390f6011.exe
Resource
win10v2004-20240802-en
General
-
Target
077189d11b62f239d6768b52312f5335.zip
-
Size
66KB
-
MD5
ec80e2be1004cb0a3374362daae548bc
-
SHA1
ddd9ba4d47c22b46780640f0881d16df7496bb57
-
SHA256
592253dabad0ad66513837f9c82dbe1d424cfcd6b71387a60a06ce919c9cd90d
-
SHA512
2c56097ca06abbf7ddd53784f0f19a6eba432b78f9444e321757884add6f40d75dfa0c63ced49961e51bbfa12600bde633e074ff57d8f828a235eca701a946d1
-
SSDEEP
1536:tzgNB7tyPXvv26hl7ojL3FTF2GasoG0e8:tzgNBR8vO63oGdsoG07
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/9016150b84e91ddc0d02055e5ccc264126caa44cd7bb651f1f84a39b390f6011
Files
-
077189d11b62f239d6768b52312f5335.zip.zip
Password: infected
-
9016150b84e91ddc0d02055e5ccc264126caa44cd7bb651f1f84a39b390f6011.exe windows:5 windows x86 arch:x86
Password: infected
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.vmp0 Size: 107KB - Virtual size: 112KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.vmp0 Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE