BIze.pdb
Static task
static1
Behavioral task
behavioral1
Sample
e10280c91dc1fb46756d9473163eec9052b8c8a352955d0f21a24246da054ba2.exe
Resource
win7-20240221-en
General
-
Target
6b799c2e76b37bf96ef35ba8580f0bfc.bin
-
Size
596KB
-
MD5
c7b0e757d052a7aa04c161199575927e
-
SHA1
91b910d0b4cd4f40aea373d05419569af6ef5a51
-
SHA256
42eaa1826532b873726fa4cab1494fe973a8b0da2ecc6686245ca0b3312f8f51
-
SHA512
664a2bdaa9d9e5fa1aac5f12895671cc75bdb510816456ed8e507ddaba9e2d05908d3b992d8888bcfbe64982cf3c18caf85d095aefe3f57e1e192276c8432af9
-
SSDEEP
12288:HOC6+3uTJOwNhlimP/+I5Ubnrq6xJTSYdbUd5rK4ZJAes:HOk3uTpUmP/+I6zr9JTHdUvrKUJZs
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/e10280c91dc1fb46756d9473163eec9052b8c8a352955d0f21a24246da054ba2.exe
Files
-
6b799c2e76b37bf96ef35ba8580f0bfc.bin.zip
Password: infected
-
e10280c91dc1fb46756d9473163eec9052b8c8a352955d0f21a24246da054ba2.exe.exe windows:4 windows x86 arch:x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 626KB - Virtual size: 625KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ