Static task
static1
Behavioral task
behavioral1
Sample
f95df3026cf4edcc3d334bfc20d188de06ea4e4497e94c63504b2b783dc3e55e.exe
Resource
win7-20240708-en
General
-
Target
f95df3026cf4edcc3d334bfc20d188de06ea4e4497e94c63504b2b783dc3e55e.exe
-
Size
2.9MB
-
MD5
3799f4f2cfc27184ce70913f4ec3a8be
-
SHA1
4424871cdfd4f9b4fb1039049a75844401a7c358
-
SHA256
f95df3026cf4edcc3d334bfc20d188de06ea4e4497e94c63504b2b783dc3e55e
-
SHA512
f38b986c639eb2c676e0ecd9316cea437934550d772f5494e2589626e826a5d23954398c3e4eb4584594e5e6cbea28ffe195bea27d2674f1a8119ca14ee869a0
-
SSDEEP
49152:HPwL/gU97fpS9iZXovvQyWVkeRJFm0w7KwKz:vwLY47fpkyYvv7sbP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f95df3026cf4edcc3d334bfc20d188de06ea4e4497e94c63504b2b783dc3e55e.exe
Files
-
f95df3026cf4edcc3d334bfc20d188de06ea4e4497e94c63504b2b783dc3e55e.exe.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 183KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
uyzzfcwd Size: 2.7MB - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
cnrltnzy Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE