Static task
static1
Behavioral task
behavioral1
Sample
d4a19dba0dc35d6a7ca0d7a372f0e980N.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
d4a19dba0dc35d6a7ca0d7a372f0e980N.exe
Resource
win10v2004-20240802-en
General
-
Target
d4a19dba0dc35d6a7ca0d7a372f0e980N
-
Size
768KB
-
MD5
d4a19dba0dc35d6a7ca0d7a372f0e980
-
SHA1
c793758ca14c5f06bc1dc4c1ec58784859bc622a
-
SHA256
cc6ffcbc757b75c06a020d8cedfbb1de49fcc1c1a540a052add2e32558857ab8
-
SHA512
3772c1f02d00b4bdd627c6ca3bcc060d4ab33f087f86265b39ea40ae71d4929cf1dc1df66cd44c78640d2b7ef7a91f14bf8d1e85b3846038fc44ea6c7b51baf8
-
SSDEEP
12288:T8PizwxWENu9/+zrWAI5KFum/+zrWAIAqWim/+zrWAI5KF4cr6VDsEqacjgqANXF:TqisxtNu9m0BmmvFimm0Xcr6VDsEqacK
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d4a19dba0dc35d6a7ca0d7a372f0e980N
Files
-
d4a19dba0dc35d6a7ca0d7a372f0e980N.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 51KB - Virtual size: 51KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.bss Size: - Virtual size: 122KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.flh Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ