Static task
static1
Behavioral task
behavioral1
Sample
b7ab91889289babcced64e9acb2394a0N.exe
Resource
win7-20240903-en
General
-
Target
b7ab91889289babcced64e9acb2394a0N
-
Size
4.8MB
-
MD5
b7ab91889289babcced64e9acb2394a0
-
SHA1
74e4096979036cc9bae821746966bcea0a666f2a
-
SHA256
2d209a6330260b7b7e55ccce687dd89f934efb3c892e4153eb74102d0faaced2
-
SHA512
dcdb58503b7bced0f025430cc010c51604216bf0867370111d4e3cbfacd95e0e87219649742fcea45f3ce475d91c34d438b2d9ee6d49ffcbfd4457699a70bb79
-
SSDEEP
98304:z9/9FHn51DY7VLm2/QvMMFJ7wbz9VtUl9rv:z9fHn6X/QBFUV8r
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b7ab91889289babcced64e9acb2394a0N
Files
-
b7ab91889289babcced64e9acb2394a0N.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 3.9MB - Virtual size: 3.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 15KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
MHIzlKcz Size: 512B - Virtual size: 22B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.???? Size: 512B - Virtual size: 276B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ