Static task
static1
Behavioral task
behavioral1
Sample
79d84d5a52efb44414294c5b32809ff299b126422439e37772b2ff9736028b69.exe
Resource
win7-20241010-en
General
-
Target
79d84d5a52efb44414294c5b32809ff299b126422439e37772b2ff9736028b69.exe
-
Size
97KB
-
MD5
9f117d82e5e26146db40ee4c2c20ddcd
-
SHA1
940fbbfb56e35888b1ad72ec7fff594652f91ca0
-
SHA256
79d84d5a52efb44414294c5b32809ff299b126422439e37772b2ff9736028b69
-
SHA512
01fbd5540abacee45caad8540b0af7c788c34b14d4c8ad011a46bca45a48a6dfad0e9f4d7040c2a2d1aee3e8ee823ac5aca4a383c704ce65d5bc84859b470009
-
SSDEEP
3072:xSUti6Rj6Yxq2hb/uxehD8EEjsYHjxQdT:xN0YQeuxCDrYDGh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 79d84d5a52efb44414294c5b32809ff299b126422439e37772b2ff9736028b69.exe
Files
-
79d84d5a52efb44414294c5b32809ff299b126422439e37772b2ff9736028b69.exe.exe windows:4 windows x86 arch:x86
46646950e38cdd1519d35c0c539d2b12
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
Sleep
SetErrorMode
ExitProcess
Sections
.text Size: 64KB - Virtual size: 68KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE