Static task
static1
Behavioral task
behavioral1
Sample
594e444b9fe80c0574325ae66bb745bc0649de754dd575b92051afadb4e86e32N.exe
Resource
win7-20240903-en
General
-
Target
594e444b9fe80c0574325ae66bb745bc0649de754dd575b92051afadb4e86e32N
-
Size
2.9MB
-
MD5
2f47c3f5d41ae0f271cbb41583f67a60
-
SHA1
5ebf44371b56ba8b17d62c28b006d14df73041ed
-
SHA256
594e444b9fe80c0574325ae66bb745bc0649de754dd575b92051afadb4e86e32
-
SHA512
eb91ba0f7d09c12178ffd838b547c62bf5dfbb38161bb3014fdc96a972166d7806e789fee79f64aa3ea73fa68efeb42ca3f54f74ab12190cc05e8ece469e848f
-
SSDEEP
49152:u+L6rN6+L9Ulceu7REScWH/pYxtNQ+GWcF5un6w3rXsi:yrN6EGcegHR2y+GWiuVXs
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 594e444b9fe80c0574325ae66bb745bc0649de754dd575b92051afadb4e86e32N
Files
-
594e444b9fe80c0574325ae66bb745bc0649de754dd575b92051afadb4e86e32N.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 159KB - Virtual size: 352KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
nzaicoow Size: 2.7MB - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
tylwxoxs Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE