Static task
static1
Behavioral task
behavioral1
Sample
8f5de93576484f382b8ed5055a17b1853d744f073fb4da929dc4d0d8e197d863N.exe
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
8f5de93576484f382b8ed5055a17b1853d744f073fb4da929dc4d0d8e197d863N.exe
Resource
win10v2004-20241007-en
General
-
Target
8f5de93576484f382b8ed5055a17b1853d744f073fb4da929dc4d0d8e197d863N.exe
-
Size
93KB
-
MD5
c67665d5732f971a4c2ef202836c4220
-
SHA1
cc7878c061415e034d1ff42f14100a09c12f2029
-
SHA256
8f5de93576484f382b8ed5055a17b1853d744f073fb4da929dc4d0d8e197d863
-
SHA512
e269c99ec1a55f7cc901c573656b405c7db5f81b8fba5fc020afe2f5607194fec51ee6e7de8b92a12f5438b122b80c3de5cc93a6176f040ff1e3591d814075a3
-
SSDEEP
1536:EV3k1In4Udovktf+3JNn1UvJB/aOHoToRQApRJJ5R2xOSC4Bus3cO57OWxXPu4nT:G3k1Y4xvktf+331UxlaOH5eqrJ5wxO3A
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8f5de93576484f382b8ed5055a17b1853d744f073fb4da929dc4d0d8e197d863N.exe
Files
-
8f5de93576484f382b8ed5055a17b1853d744f073fb4da929dc4d0d8e197d863N.exe.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.reloc Size: 45KB - Virtual size: 45KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.bss Size: - Virtual size: 122KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.gfids Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.text Size: 6KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.pdata Size: 5KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ