Static task
static1
Behavioral task
behavioral1
Sample
5433c04586cf1ffbacad3b5cb1ed5694f0185035823a582b68adc6020c4c779a.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
5433c04586cf1ffbacad3b5cb1ed5694f0185035823a582b68adc6020c4c779a.exe
Resource
win10v2004-20241007-en
General
-
Target
5433c04586cf1ffbacad3b5cb1ed5694f0185035823a582b68adc6020c4c779a
-
Size
133KB
-
MD5
0356b7bb07355265f73cbb010ae45041
-
SHA1
9223d100e366a21ae395c9a7b64b13ddb236c389
-
SHA256
5433c04586cf1ffbacad3b5cb1ed5694f0185035823a582b68adc6020c4c779a
-
SHA512
9d5b7177b162135338946ba1bb90d264c646e799c7980f9355973585a73d94010a95b2f8704293d60919639bb142ae7a66205bb1c2927b88b52ff1b4c9a1ea43
-
SSDEEP
1536:qpO1Ek93yAgfSQUVmHNnPJNAa37I1OcLLDF+2fqzQBZ0+7Pyry4xdWrY9omQ:KkAbf7NN3QL9HxEMIHv6Yc
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5433c04586cf1ffbacad3b5cb1ed5694f0185035823a582b68adc6020c4c779a
Files
-
5433c04586cf1ffbacad3b5cb1ed5694f0185035823a582b68adc6020c4c779a.exe windows:4 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
.text Size: 18KB - Virtual size: 92KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 114KB - Virtual size: 116KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE