Static task
static1
Behavioral task
behavioral1
Sample
b908aa8080c5db3065ad271c7526ac50a873270825fc636246bc37ea01af8306.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
b908aa8080c5db3065ad271c7526ac50a873270825fc636246bc37ea01af8306.exe
Resource
win10v2004-20241007-en
General
-
Target
b908aa8080c5db3065ad271c7526ac50a873270825fc636246bc37ea01af8306.exe
-
Size
915KB
-
MD5
79230f7919ceacf3691022cd98371ac9
-
SHA1
0744f3c5943c02459ec981a8c5aa8f70354e231d
-
SHA256
b908aa8080c5db3065ad271c7526ac50a873270825fc636246bc37ea01af8306
-
SHA512
5e58efbe54384fa149fd161e6c0a8a02222206aa49c76d3a82442a4988c057b60bdbd18f3c5a1a54df979583f7efd1e62a96516b7872ddf92ee1a1280fea21a5
-
SSDEEP
12288:QTm5HboTOZCdLPW4y/mA0vavdKicFJlvLhy+CYYOCXleLdJw7FFSXnKpSDCjap:QC/lwaUicFs+CYYOz2FFf4
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource b908aa8080c5db3065ad271c7526ac50a873270825fc636246bc37ea01af8306.exe
Files
-
b908aa8080c5db3065ad271c7526ac50a873270825fc636246bc37ea01af8306.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 864KB - Virtual size: 864KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 49KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ