Static task
static1
Behavioral task
behavioral1
Sample
b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68N.exe
Resource
win10v2004-20240802-en
General
-
Target
b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68N
-
Size
2.2MB
-
MD5
e35ce57a24257ca4ddc73cd177947a40
-
SHA1
cb271ff412b407f7b7ea3130f812ec3676a14241
-
SHA256
b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68
-
SHA512
c1e689d070c173f1c76bcce7424d5baedc1cecb5999f6a4dc001775d9173a272346c402d9d7a979e5597f7362fd87384e90cc431d8f85b33a36806d72e6d93bc
-
SSDEEP
49152:I87ulylY7QR1VAsxMHM6YCq6d+8LK/x6wbkZibSvSj8C9rky/ydd1:I8KlylL1VnxaM6YCLd+p56wIibma80kP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68N
Files
-
b4e612eecec74dccfff0a936d350ef6741cc0430eddf568852a449d029659b68N.exe windows:5 windows x86 arch:x86
b053fdb4d2863a90eb458871ca35a3ac
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32 rasapi32
MultiByteToWideChar C-
Sections
.text Size: 1.3MB - Virtual size: 2.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
SE Size: 752KB - Virtual size: 752KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
SE Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
SE Size: 100KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
SE Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ