Static task
static1
Behavioral task
behavioral1
Sample
85b4ae897dc9ddea04f18b19e97128479e9be1b25dc122643e644e1e77e271f5.exe
Resource
win7-20240903-en
General
-
Target
85b4ae897dc9ddea04f18b19e97128479e9be1b25dc122643e644e1e77e271f5.exe
-
Size
530KB
-
MD5
41d167afce4833cfa5f6c91a2fb5ec78
-
SHA1
dd01977c2b091482770fa2af3a7a867778c4b490
-
SHA256
85b4ae897dc9ddea04f18b19e97128479e9be1b25dc122643e644e1e77e271f5
-
SHA512
06cbc68126bf443fe01260e8fa76b6813e1d1ef03c0aff3c1699b67eadfb3fbf125bf083e3474614563f3f9c704a275060647f118cee5a79a8e67901b97ef731
-
SSDEEP
6144:x6Uqd2GhNNLrM+qqpEu+VNlJ5xIjXDGwtwy/hkHa7wZjEHG85v0zLTgk46CKmqI4:IUi2iN53E15iDGwtwohw5V8x0+FD6e2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 85b4ae897dc9ddea04f18b19e97128479e9be1b25dc122643e644e1e77e271f5.exe
Files
-
85b4ae897dc9ddea04f18b19e97128479e9be1b25dc122643e644e1e77e271f5.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 461KB - Virtual size: 460KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 68KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ