Static task
static1
Behavioral task
behavioral1
Sample
LMZ302589545։2024_0613․PDF.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
LMZ302589545։2024_0613․PDF.exe
Resource
win10v2004-20240611-en
General
-
Target
LMZ302589545։2024_0613․PDF.exe
-
Size
749KB
-
MD5
d039548253b116d4f94f0925df4ed528
-
SHA1
768a9ca8dee8c5159a3fc73835fb3c0b39d02b54
-
SHA256
29e0c211687e215278459854735e3712f4095a33c5499b23643357faa8fc3d31
-
SHA512
f09ac66e888147df4145b156030f629d1628e5438ce29f601799c57a28988a6f35ae9d6cc6110218b2862cccd6fd2bc6036b6fc8cc1ffb715f496b1bad82fa55
-
SSDEEP
12288:KlykMyCK2xrOoZFWYOiblMRwkHUK/4S3soZ7CxE9i+ChEpdSdYpzltAOUhM2Gyrt:kMyC5XWYO9wC/HXZ7DWSSD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource LMZ302589545։2024_0613․PDF.exe
Files
-
LMZ302589545։2024_0613․PDF.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 742KB - Virtual size: 742KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ