Behavioral task
behavioral1
Sample
4674be79098ed3ff570d9047395ad2b2.exe
Resource
win7-20240903-en
General
-
Target
4674be79098ed3ff570d9047395ad2b2.exe
-
Size
95KB
-
MD5
4674be79098ed3ff570d9047395ad2b2
-
SHA1
56df83f935354f2c2fc5278a4a981e0116f2e791
-
SHA256
b02a0ab9f89c04ddb13c3528dcce47fdb5aae8966ae2fdd15b10f8669332f6ab
-
SHA512
b1e6f957d798e5979e2bf81dd83ede80e78d64d106670fc5f2dee5e1c314b90ed2df8a2003e5dbba5ab90ca7255afafdc9ba6b234e6f571b948a03f2eaec3ad0
-
SSDEEP
1536:xqsI1tqzClbG6jejoigIr43Ywzi0Zb78ivombfexv0ujXyyed26tmulgS6pk:fstAyYr+zi0ZbYe1g0ujyzd2k
Malware Config
Extracted
redline
xD
51.195.94.194:42678
Signatures
Files
-
4674be79098ed3ff570d9047395ad2b2.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 93KB - Virtual size: 92KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ