Static task
static1
Behavioral task
behavioral1
Sample
500e3c9c865a5f7652b4404874638619b550941f9548a3fde796bb143e9dea65.exe
Resource
win7-20240708-en
General
-
Target
500e3c9c865a5f7652b4404874638619b550941f9548a3fde796bb143e9dea65.exe
-
Size
4.3MB
-
MD5
a42b5a11fb98e17dca2ea358eac541de
-
SHA1
db5ddcc295e6c1f418514877c76a73da72f6f048
-
SHA256
500e3c9c865a5f7652b4404874638619b550941f9548a3fde796bb143e9dea65
-
SHA512
66a167be34ac5bf65221af4d5db2b324e28c0626ed371353b4177eeb8622367cfb3fac0df7bb1c9c7a4820d6bff85c4ac3a793a27564e867dbb2bf3509ee8c9f
-
SSDEEP
98304:zpBNrmu/zIr0Bvz6wuLAg7TeYbymqQMu0b9vyjftgQ+MV96YGzR:zrEQK06nLJ7TH90xvcV5GN1
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 500e3c9c865a5f7652b4404874638619b550941f9548a3fde796bb143e9dea65.exe
Files
-
500e3c9c865a5f7652b4404874638619b550941f9548a3fde796bb143e9dea65.exe.exe windows:4 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
lstrcpy
Sections
Size: 2.5MB - Virtual size: 7.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 428B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 3.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
dsmoqcnp Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
yktdnnda Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE