Static task
static1
Behavioral task
behavioral1
Sample
a978da26e3782765bee3d190ce3462b793d3efd4530534137eb5611abe39043f.exe
Resource
win7-20241010-en
General
-
Target
a978da26e3782765bee3d190ce3462b793d3efd4530534137eb5611abe39043f.exe
-
Size
2.6MB
-
MD5
9be7a7b4dc262499f590d16b148c33b5
-
SHA1
6fc7de2cb2a04a9ecd25284c756d330b36277c59
-
SHA256
a978da26e3782765bee3d190ce3462b793d3efd4530534137eb5611abe39043f
-
SHA512
fffd2a97b3752a724dac5e0fad09966e371b6d37ac212191286963f6ac62ffe95ad6755dbbd1a7082a27d2d78df794fcd90b520a4952088db83b7a1d4cb9a998
-
SSDEEP
49152:hPguRQs318AOvuQ1vErhi/Te00keH10C6RCAoFiCRo2ONg6:2uRQsXOvuQ5Er4alV0Cf/P
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a978da26e3782765bee3d190ce3462b793d3efd4530534137eb5611abe39043f.exe
Files
-
a978da26e3782765bee3d190ce3462b793d3efd4530534137eb5611abe39043f.exe.exe windows:4 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
kernel32
lstrcpy
Sections
Size: 4KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
eluhkahs Size: 2.6MB - Virtual size: 2.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
dqckcbkd Size: 1024B - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE