Static task
static1
Behavioral task
behavioral1
Sample
b1339e19adb494bb2dbb4cd5e086ad0cdf23c1e52b450a1034a3212243ac235e.exe
Resource
win7-20240903-en
General
-
Target
b1339e19adb494bb2dbb4cd5e086ad0cdf23c1e52b450a1034a3212243ac235e
-
Size
1.8MB
-
MD5
f64ca25a2256b91e9c2be8ac99c31dd9
-
SHA1
63b1f44deb4bbc938243817a4604d325dc83b8d5
-
SHA256
b1339e19adb494bb2dbb4cd5e086ad0cdf23c1e52b450a1034a3212243ac235e
-
SHA512
dc225c089d10510fdad771fb6378e749c65932325c226a39b9b3d8b7606d9947f4f796f54fa3543253f6881a3ffdc377a5208c404d58c807560332d7b6ec30b3
-
SSDEEP
49152:1lKqrCJnQv/6WLyxPMNI+dgQmPpZffbqD6OYXlJK5ZS7omx:nKqrt/6U2MNI+ylxxf+0Xm5Zq
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource b1339e19adb494bb2dbb4cd5e086ad0cdf23c1e52b450a1034a3212243ac235e
Files
-
b1339e19adb494bb2dbb4cd5e086ad0cdf23c1e52b450a1034a3212243ac235e.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 183KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
qbwewllr Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
yndrdyob Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE