Static task
static1
Behavioral task
behavioral1
Sample
6d3ecb5d0c94f3e917bdae5bdef67070N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
6d3ecb5d0c94f3e917bdae5bdef67070N.exe
Resource
win10v2004-20240802-en
General
-
Target
6d3ecb5d0c94f3e917bdae5bdef67070N
-
Size
488KB
-
MD5
6d3ecb5d0c94f3e917bdae5bdef67070
-
SHA1
48484973d18a7ad057cabcd0b2a83ee16c916e55
-
SHA256
6512a2508f9028b049af916de06876d81b03ef9de976e6a8625880e6cc23d2cb
-
SHA512
57f2e9f92e73fd9cd487d6cf58a0df71d92e836a3d9bc4a8fbbf40d9b7bd5cc37c40f1a5fb5b0942a09919a92d72a86cfc4d093d56facb57bbb53242f9545639
-
SSDEEP
12288:V/M1/MP/Mx/M7/Mx/M4/MpBE/Mk/M2/M1:VGK2O2HIBEd7M
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6d3ecb5d0c94f3e917bdae5bdef67070N
Files
-
6d3ecb5d0c94f3e917bdae5bdef67070N.exe windows:4 windows x86 arch:x86
87bed5a7cba00c7e1f4015f1bdae2183
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
Sections
kkrunchy Size: 52KB - Virtual size: 6.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE