bckgzm.pdb
Static task
static1
Behavioral task
behavioral1
Sample
238a3f599274a5816c5ca0e17fe9a01902b46b9e7adf979f368e8a15c0db7a1e.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
238a3f599274a5816c5ca0e17fe9a01902b46b9e7adf979f368e8a15c0db7a1e.exe
Resource
win10v2004-20240802-en
General
-
Target
cc452e631aa8ede04ec4d7f9bc7ba650.zip
-
Size
742KB
-
MD5
9a34e6377062098560bac39693cfe25a
-
SHA1
5b65950b15c37df652163da25860a22c9e65d002
-
SHA256
e215692658cff912dafef6cef18ba02a2aa543fc0003b15b432667fd3a9bd3bb
-
SHA512
8b7f1f7f86e31e94047394c2b4027973f2fda2e82ad7171cba4498c86390650ff98e845fa476c0338aca67a02f80681be76a4c2a940d5a44323222a775e9cc08
-
SSDEEP
12288:kf7casC2rXcU9OVswzGRciWesilFxkSeg4MKAlcBdLOPRHFWKF7bUJtL3dHE:47sC6Xw6wzQWzitxevM7gdLOPRHF3sJg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/238a3f599274a5816c5ca0e17fe9a01902b46b9e7adf979f368e8a15c0db7a1e
Files
-
cc452e631aa8ede04ec4d7f9bc7ba650.zip.zip
Password: infected
-
238a3f599274a5816c5ca0e17fe9a01902b46b9e7adf979f368e8a15c0db7a1e.exe windows:6 windows x64 arch:x64
Password: infected
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 1KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 512B - Virtual size: 324B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 74KB - Virtual size: 74KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 436B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ