Static task
static1
Behavioral task
behavioral1
Sample
d22189632a074d34ddcb13506d05efd505c1e3c2cee995619cdb5a5210c36771.exe
Resource
win10v2004-20240802-en
General
-
Target
d22189632a074d34ddcb13506d05efd505c1e3c2cee995619cdb5a5210c36771
-
Size
1.8MB
-
MD5
3384295edb2ec90abc810676cf3acebd
-
SHA1
5a474ca40b17e4a46edd0daed01ae9a945ea8208
-
SHA256
d22189632a074d34ddcb13506d05efd505c1e3c2cee995619cdb5a5210c36771
-
SHA512
e84c2f0da37ec98e10a1c8fbabd9d92c36a9740beb4766728553e38995aae9b88a88b9f06089f31c9a233713fbe65dc7052e261dd23dc102312c2ebf55ea66d1
-
SSDEEP
49152:tZlnYVzn0TJ8y5sNRhhC18MbBygcxniB+qRT5:1YB0V87RhhC1dMxih5
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource d22189632a074d34ddcb13506d05efd505c1e3c2cee995619cdb5a5210c36771
Files
-
d22189632a074d34ddcb13506d05efd505c1e3c2cee995619cdb5a5210c36771.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 183KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
uxxcfipj Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
cdtmgrcq Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE