Static task
static1
Behavioral task
behavioral1
Sample
08d4e8e53c62fdefd593f1baf3ad4455dabbd737d1fec25c95c106d5e8051845N.exe
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
08d4e8e53c62fdefd593f1baf3ad4455dabbd737d1fec25c95c106d5e8051845N.exe
Resource
win10v2004-20241007-en
General
-
Target
08d4e8e53c62fdefd593f1baf3ad4455dabbd737d1fec25c95c106d5e8051845N.exe
-
Size
337KB
-
MD5
d8b0d175ceb66ee89e7327fbfa0c1500
-
SHA1
233262b76bc58b89b989400c6293f984b00e5fa9
-
SHA256
08d4e8e53c62fdefd593f1baf3ad4455dabbd737d1fec25c95c106d5e8051845
-
SHA512
5b7051eb075168ce053a75e5bcdb1daa96fbef325b2f66555c2266283bc12780cd953b6e788629571c61c6ee555b0c9812adb00c628443444f6eb08fecb19707
-
SSDEEP
6144:x7jduR+zuIBwIL+xy53kyIxinvGdHDsLZf4/6NRBkQ3fi8Ol:hvH/L+xy5PIxiqjmg2RBh3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 08d4e8e53c62fdefd593f1baf3ad4455dabbd737d1fec25c95c106d5e8051845N.exe
Files
-
08d4e8e53c62fdefd593f1baf3ad4455dabbd737d1fec25c95c106d5e8051845N.exe.exe windows:5 windows x86 arch:x86
e0bb798843321269d19f83440476c11a
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetModuleHandleA
GetProcAddress
wsock32
WSACleanup
winmm
mixerOpen
version
VerQueryValueW
comctl32
ord17
psapi
GetModuleBaseNameW
user32
GetDC
gdi32
BitBlt
comdlg32
GetOpenFileNameW
advapi32
RegCloseKey
shell32
DragFinish
ole32
CoGetObject
oleaut32
SafeArrayGetDim
Sections
.MPRESS1 Size: 294KB - Virtual size: 860KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.MPRESS2 Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 38KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE