Static task
static1
Behavioral task
behavioral1
Sample
6dc2c55200c1fd9bdb0623f030e5427092fcece39da6d1f7ac0ff2d96baa5ce2N.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
6dc2c55200c1fd9bdb0623f030e5427092fcece39da6d1f7ac0ff2d96baa5ce2N.exe
Resource
win10v2004-20241007-en
General
-
Target
6dc2c55200c1fd9bdb0623f030e5427092fcece39da6d1f7ac0ff2d96baa5ce2N
-
Size
364KB
-
MD5
348fcbc19f65e0ef94409a3d81d76420
-
SHA1
6cb04ca4acea6ef9c5b8398db881658a6ddbedb5
-
SHA256
6dc2c55200c1fd9bdb0623f030e5427092fcece39da6d1f7ac0ff2d96baa5ce2
-
SHA512
1fbcd3fd3cf89b3f61fe20dd04bb519303662f7ee9a08d2679ec174d32aaa69ba63d22f2107f8f53ba9321e5030ba1c4a1843afb03509ddfa708d63f802822ca
-
SSDEEP
6144:w6Q7qb77OTZEX+Kbzg6qu1JtOXOJ13EtwEGbkhdt1qs3LU4Y5:gqbCOOQtO+7EeEfzqqL
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6dc2c55200c1fd9bdb0623f030e5427092fcece39da6d1f7ac0ff2d96baa5ce2N
Files
-
6dc2c55200c1fd9bdb0623f030e5427092fcece39da6d1f7ac0ff2d96baa5ce2N.exe windows:4 windows x86 arch:x86
eb6f3889cecb46696b8e430e75740a33
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryExA
GlobalSize
GetAtomNameA
ResumeThread
GlobalUnlock
GetUserDefaultLangID
lstrlenA
VirtualProtect
GetModuleHandleA
GetCommandLineA
SetLastError
HeapCreate
CompareFileTime
InterlockedExchange
WaitForSingleObject
GetConsoleDisplayMode
GetTickCount
GetVersion
WaitForMultipleObjects
HeapReAlloc
GetConsoleCP
user32
GetWindow
FrameRect
AnyPopup
BeginPaint
GetClassNameA
FillRect
GetTitleBarInfo
DragDetect
CreateIcon
wsprintfA
ShowWindow
GetDC
SetForegroundWindow
EndPaint
GetCursorPos
GetParent
ReleaseDC
DrawTextA
GetFocus
rastapi
AddPorts
DeviceConnect
DeviceDone
DeviceListen
PortClose
quartz
DllGetClassObject
Sections
.text Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1024B - Virtual size: 572KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ