Static task
static1
Behavioral task
behavioral1
Sample
b7bbe88d2daceef7fdbd706adbdf6532976f23916701739ee0987f77f36b980a.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
b7bbe88d2daceef7fdbd706adbdf6532976f23916701739ee0987f77f36b980a.exe
Resource
win10v2004-20241007-en
General
-
Target
0eff2e486b1c46cbf55bc4284355f1ee.bin
-
Size
820KB
-
MD5
3b63bd7a02bb90069ec98e1bf9b86ef0
-
SHA1
88d36a997bec1eedb2cb71695a172b76a00c3f7f
-
SHA256
3a76da48b0725ae553e34eb732850177df0b1c17fc2d7666ef6c08ae5521e3e6
-
SHA512
73b3a213977ecf2bb0c8f246b80928581e42f0b6dfebe26eec881b636770b4b121aae00c517ebb6cd6c24ada1a62384b5c54b9127d5948eac639443fb843beca
-
SSDEEP
24576:yA6TJAJo8w9yx8sItO9qOLXaNVibwuXuON9x:JqAJ3+n7+AibweBj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/b7bbe88d2daceef7fdbd706adbdf6532976f23916701739ee0987f77f36b980a.exe
Files
-
0eff2e486b1c46cbf55bc4284355f1ee.bin.zip
Password: infected
-
b7bbe88d2daceef7fdbd706adbdf6532976f23916701739ee0987f77f36b980a.exe.exe windows:4 windows x86 arch:x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 861KB - Virtual size: 861KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 22KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ