Static task
static1
Behavioral task
behavioral1
Sample
40537aa62a4949ad137a04bcfaaf15e94634aeffb7c84ea34dc403f8f99c7579.exe
Resource
win7-20241010-en
General
-
Target
40537aa62a4949ad137a04bcfaaf15e94634aeffb7c84ea34dc403f8f99c7579.exe
-
Size
4.3MB
-
MD5
4b7a502ea349a1138dabc95986ae5f01
-
SHA1
2fc5f42c5bb44566198a2069eb11327043216689
-
SHA256
40537aa62a4949ad137a04bcfaaf15e94634aeffb7c84ea34dc403f8f99c7579
-
SHA512
1238161d24634561b0de608d2857d82f99582c0b216c1d5cac02e5ec2039cc73b4b8211d48c58d8fe38c7599a284096d087659749dc037b3dacb6b9d1e891186
-
SSDEEP
98304:VsA3f3OQ4tskTO2+947Yxgm9cHW6WwCOTHG3p1k2:H3OD3Zr7Ugm9cgom
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 40537aa62a4949ad137a04bcfaaf15e94634aeffb7c84ea34dc403f8f99c7579.exe
Files
-
40537aa62a4949ad137a04bcfaaf15e94634aeffb7c84ea34dc403f8f99c7579.exe.exe windows:4 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
lstrcpy
Sections
Size: 2.5MB - Virtual size: 7.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 428B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 3.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
tqeviyqs Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
gdekhlma Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE