Static task
static1
Behavioral task
behavioral1
Sample
Your file name without extension goes here.exe
Resource
win7-20241023-en
General
-
Target
49b452e7b1845695e26941c2814ffd7d605291d65e7234ff4a846128835a3286
-
Size
376KB
-
MD5
674698ce43b5028c156c8bd9a908dc09
-
SHA1
5b0517a6f78828b0b139bd6ad8870df3217c9d63
-
SHA256
49b452e7b1845695e26941c2814ffd7d605291d65e7234ff4a846128835a3286
-
SHA512
24afe9514cd18ce8cb17a174f1e6a5f31aa82631a4f844ce7b2d08ffab4fcfb9cd8e757584717f003ad0e23f8d1dd9769e42996f198668fbe7582e2a660aa451
-
SSDEEP
6144:CmR7q+dL+PNCT/OPmt8/ixYyuoKPadiiA3DJeHcsNjxbbjcqmllTFQurRI9l:CmR7RdL+PmKhyU7sHcsxxbbopDmm29l
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack002/Your file name without extension goes here.exe
Files
-
49b452e7b1845695e26941c2814ffd7d605291d65e7234ff4a846128835a3286.zip
-
30% Order payment-BLQuote_'PO#385995790.7z.rar
-
Your file name without extension goes here.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ