Static task
static1
General
-
Target
ebbd4d40ee39ad9ccccf5288729b2285b0744aca85972055c31d5c0c92f4294f
-
Size
2.9MB
-
MD5
6d68826216dac2bf0fc0a572e384ad8c
-
SHA1
392351d45e0e61f99a4595b153353eea00524371
-
SHA256
ebbd4d40ee39ad9ccccf5288729b2285b0744aca85972055c31d5c0c92f4294f
-
SHA512
d892bb50a17436e132c9c49aa513812213ee849fcf176310f8c480dbd768b9744400d999fda1ff2c9987d63dfdab616d7c3c0b4e35223acaa3ab65dfa3b9fb08
-
SSDEEP
49152:jU2AQsdbkb/dfXxeP7/hJTViIFbw+d2L8f0vItIQwyfVuZCbh+y7UQ3mG:UdbkTRXc7hJTVZFbm60yXKyh+y/
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ebbd4d40ee39ad9ccccf5288729b2285b0744aca85972055c31d5c0c92f4294f
Files
-
ebbd4d40ee39ad9ccccf5288729b2285b0744aca85972055c31d5c0c92f4294f.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 183KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 836B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ncehdory Size: 2.7MB - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
uhrpkehw Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE