Static task
static1
Behavioral task
behavioral1
Sample
7eeef45cc28e88441c31f8dce869f650d2287ea3393306531521f05a8a582bd7.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
7eeef45cc28e88441c31f8dce869f650d2287ea3393306531521f05a8a582bd7.exe
Resource
win10v2004-20240802-en
General
-
Target
7eeef45cc28e88441c31f8dce869f650d2287ea3393306531521f05a8a582bd7
-
Size
15.0MB
-
MD5
86dbd01b41c53746d38bf08d5aaa1005
-
SHA1
a06f788ce68daa9f0944bb1fa36adc2369697c3d
-
SHA256
7eeef45cc28e88441c31f8dce869f650d2287ea3393306531521f05a8a582bd7
-
SHA512
805b9e5385ccac4a73331b9cc9ec55289070ad525e2c06a021463ed13db2080c24d116134ac2d760f396e99cecf797e3735b81efef607abd9b4cf607619dd396
-
SSDEEP
393216:junf4RoPbygjSrCFoYSbuQCwu9l/FA5WlE3:junf4RoPbRfFwu5NVK5Wa
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7eeef45cc28e88441c31f8dce869f650d2287ea3393306531521f05a8a582bd7
Files
-
7eeef45cc28e88441c31f8dce869f650d2287ea3393306531521f05a8a582bd7.exe windows:5 windows x86 arch:x86
da56437b7e0c255bcf26ddee6dd4eb45
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
winmm
midiStreamOut
ws2_32
WSAAsyncSelect
rasapi32
RasHangUpA
kernel32
GetVersion
GetVersionExA
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress
user32
SetTimer
CharUpperBuffW
gdi32
GetViewportExtEx
winspool.drv
OpenPrinterA
advapi32
RegOpenKeyExA
shell32
ShellExecuteA
ole32
OleRun
oleaut32
UnRegisterTypeLi
comctl32
ImageList_GetImageCount
wininet
InternetCloseHandle
comdlg32
ChooseColorA
Sections
.text Size: - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 494KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 488KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.Q=L Size: - Virtual size: 11.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.q7m Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.6m{ Size: 14.9MB - Virtual size: 14.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 72KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ