Static task
static1
Behavioral task
behavioral1
Sample
4b1264889578fada96b2ef7377100487edde3cfcf2686e9950dce70aecb895ab.exe
Resource
win7-20240729-en
General
-
Target
4b1264889578fada96b2ef7377100487edde3cfcf2686e9950dce70aecb895ab.exe
-
Size
2.8MB
-
MD5
bfe5092e5d60c44364a437d16b9e1078
-
SHA1
8a8eee4d1b53c0fd41b9b3c637e52bef9ad18ce7
-
SHA256
4b1264889578fada96b2ef7377100487edde3cfcf2686e9950dce70aecb895ab
-
SHA512
bc522f0b1e80ff4ac616de75b5c165eedd7d4a8c677f9527d033e6879d4c2268c42b8337e8091c0d8ed715739e7a871c6e7617b919fd3d53c136e5ed3723dc44
-
SSDEEP
24576:DxAq+jNJvAraB438wJItC8mKnd6ecW+KAVMaTqVaZjYAFIsBlGuS1oOkWo1ukL9W:2NlbBHtTd6ecfBn2kpH/AM22s1TgBO
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4b1264889578fada96b2ef7377100487edde3cfcf2686e9950dce70aecb895ab.exe
Files
-
4b1264889578fada96b2ef7377100487edde3cfcf2686e9950dce70aecb895ab.exe.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 183KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 836B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
jgbtcrqv Size: 2.6MB - Virtual size: 2.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
znomayxa Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE