vNuhl.pdb
Static task
static1
Behavioral task
behavioral1
Sample
64259b9c7add94c44c563a04df7560c950413b5270db25cde2e7013e094cede2.exe
Resource
win7-20240903-en
General
-
Target
64259b9c7add94c44c563a04df7560c950413b5270db25cde2e7013e094cede2
-
Size
768KB
-
MD5
935f65f1b34d979429d92268a2a71460
-
SHA1
065005c8faf14a8cdafc86070dfa64e39345f34f
-
SHA256
64259b9c7add94c44c563a04df7560c950413b5270db25cde2e7013e094cede2
-
SHA512
caa659ed28668169f1780da917490c4e9915fa849d9c526d5f9edaa47137eb729d288cdd41b39c101125e83c6e242a75d8a0b8c9fec2860f21ca0567973df0d1
-
SSDEEP
12288:DKRvTsh5vkaPRKMB3EpG4/in6iNI+cgeTG6/DQ3+Coxr+M+ACR5leZlNLkt:DmavkaZKMavm6iNIlgsG6rgM+M+A+erU
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 64259b9c7add94c44c563a04df7560c950413b5270db25cde2e7013e094cede2
Files
-
64259b9c7add94c44c563a04df7560c950413b5270db25cde2e7013e094cede2.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 753KB - Virtual size: 753KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ