Static task
static1
Behavioral task
behavioral1
Sample
659d7e5771dda39e290d348369a4435ca1fce155f4ca4046c2a99971977bed7a.exe
Resource
win7-20241010-en
General
-
Target
659d7e5771dda39e290d348369a4435ca1fce155f4ca4046c2a99971977bed7a
-
Size
3.1MB
-
MD5
362a4465a166f5d70e2ba682775650af
-
SHA1
33c190442e962c06b0824e9f264f49544bf94e2d
-
SHA256
659d7e5771dda39e290d348369a4435ca1fce155f4ca4046c2a99971977bed7a
-
SHA512
86030428139d02ae0bdde34fd3408a4c8f884aa8b624325f4a744e4c0ee43955e60d29c98669531fd8e3e97a40070e641470cc5bd2b188461b9bf53c3f978028
-
SSDEEP
49152:Md2Jqc3DQ1r/lkHFbNJyyEr2BxMzZ/yV8FHAZUzyl2iT5Oc8:Md2J13DQ1r/lkHFRJ8rN/yV8+Zce5Q
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 659d7e5771dda39e290d348369a4435ca1fce155f4ca4046c2a99971977bed7a
Files
-
659d7e5771dda39e290d348369a4435ca1fce155f4ca4046c2a99971977bed7a.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 416KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ccnmhawy Size: 2.7MB - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
rxumwehp Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE