Static task
static1
Behavioral task
behavioral1
Sample
964958fa1f6ca768efdbb1faa89afb2a2e88119759af4df9ec6eec6bddb51617.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
964958fa1f6ca768efdbb1faa89afb2a2e88119759af4df9ec6eec6bddb51617.exe
Resource
win10v2004-20241007-en
General
-
Target
964958fa1f6ca768efdbb1faa89afb2a2e88119759af4df9ec6eec6bddb51617
-
Size
96KB
-
MD5
0c97800219b1c9fd4551200529ac977a
-
SHA1
b4f7a636ba5391abcfc69649f0be1ce4151a8ae3
-
SHA256
964958fa1f6ca768efdbb1faa89afb2a2e88119759af4df9ec6eec6bddb51617
-
SHA512
f3f1c6566d0ae8fbfec45fa3957a931b3f7a4e6a8f657fbe194ab95e33ba1a683096d91a95c18486cd1bdcc1d6d20f73de1a06a4e48ab463d5371405ae2f1e92
-
SSDEEP
1536:C/sBaIs0SF9PhCaeBzfqpVwotboHsTPmQtWgfnre6tgiPZqWSunF:eaaCzf+VBtbJT7t7fnTZqTuF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 964958fa1f6ca768efdbb1faa89afb2a2e88119759af4df9ec6eec6bddb51617
Files
-
964958fa1f6ca768efdbb1faa89afb2a2e88119759af4df9ec6eec6bddb51617.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 83KB - Virtual size: 83KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ