Static task
static1
General
-
Target
OTWareLoader.exe
-
Size
192KB
-
MD5
5cda32a03ce70b0daaacb315cb5b72a2
-
SHA1
b4759c49dc54f6844a769e61dce7d3eb865a053b
-
SHA256
74505a0c68bb8fd70de42a9306995a0b595d69c92c39c6ecc3c3134e263897cf
-
SHA512
83a331cd5469a6f6caaecc9a910a6a4af4d01363d02d400f4a1488cce7e65282dc6000f7d183bb16b9880d70a342237e30e3a255c9e118cf18e7d5bf537ba88a
-
SSDEEP
3072:eO1aLhYcXpZyaW3D70hCd/5YeT6P3k6sgnHaaoCWY9EkSGZc4IUDK2x0oz22gaxW:5sL3+aWv0hCd/5YeT6P3k6sgnHaaoCWQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource OTWareLoader.exe
Files
-
OTWareLoader.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 190KB - Virtual size: 189KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ