Static task
static1
Behavioral task
behavioral1
Sample
5f5f0f0dc619a2ffa51105b117c9729327331712e3728959a98eec15c146ed9cN.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
5f5f0f0dc619a2ffa51105b117c9729327331712e3728959a98eec15c146ed9cN.exe
Resource
win10v2004-20241007-en
General
-
Target
5f5f0f0dc619a2ffa51105b117c9729327331712e3728959a98eec15c146ed9cN
-
Size
3.1MB
-
MD5
9f1383e2d52a5b294ebe8daf13689060
-
SHA1
bf3262405f0f337a4456b9900264039ad8054ebe
-
SHA256
5f5f0f0dc619a2ffa51105b117c9729327331712e3728959a98eec15c146ed9c
-
SHA512
a5b5007f5c710573b6b2227e48456c01edf4efc68004856688a804b575d5f5e159c522d081b75a65e1aa5c36539ccb5f040f4f4119483cb527f8096ab7da2459
-
SSDEEP
49152:aPn7jMWf14IzfJSm5W/IYhYt+JawfDwqMxivs4ympISasV9U:EjMJIzfgIYhpU/qwiUZmCg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5f5f0f0dc619a2ffa51105b117c9729327331712e3728959a98eec15c146ed9cN
Files
-
5f5f0f0dc619a2ffa51105b117c9729327331712e3728959a98eec15c146ed9cN.exe windows:4 windows x86 arch:x86
baa93d47220682c04d92f7797d9224ce
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
comctl32
InitCommonControls
Sections
Size: 2.0MB - Virtual size: 2.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 34KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 4KB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
dyzwkzqi Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
qhnxjbuu Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE