Static task
static1
Behavioral task
behavioral1
Sample
9d3adf953199b7602139a93915d8398bba7626548c5e34b0631e88b01fcf4433.exe
Resource
win7-20240903-en
General
-
Target
9d3adf953199b7602139a93915d8398bba7626548c5e34b0631e88b01fcf4433.exe
-
Size
1.7MB
-
MD5
46357450c18691d06fb6fb48b1551b35
-
SHA1
da76c0bf347ef897c08632f7fcf070568163582a
-
SHA256
9d3adf953199b7602139a93915d8398bba7626548c5e34b0631e88b01fcf4433
-
SHA512
2d58a31991c8c9e53dcf25e6b49a0d3c0b969c0addd1848c04dd4b905ebdb85b057ae4b3b2bfea5fc605cf41a9697129e88b74d52b7f8d1eb71300ac447306a6
-
SSDEEP
49152:eoxNmI1jk3743Ti8Q8D/neKf6wv9x5uecVb6FXgvmZ:ehr4jif8DPRyheK0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 9d3adf953199b7602139a93915d8398bba7626548c5e34b0631e88b01fcf4433.exe
Files
-
9d3adf953199b7602139a93915d8398bba7626548c5e34b0631e88b01fcf4433.exe.exe windows:5 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 88KB - Virtual size: 2.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 688B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ibefnlcw Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ygitltyw Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE