Static task
static1
Behavioral task
behavioral1
Sample
22bcab93a65f1de9a60a56bd3e39190c58d09ceb59d123a9d12781343da83b4e.exe
Resource
win10v2004-20240508-en
General
-
Target
22bcab93a65f1de9a60a56bd3e39190c58d09ceb59d123a9d12781343da83b4e
-
Size
1.9MB
-
MD5
ac84c235af229470a9c31f24ce3dece5
-
SHA1
e2d552f185aaba2a389d29b3f7f5b6c367ffe8a0
-
SHA256
22bcab93a65f1de9a60a56bd3e39190c58d09ceb59d123a9d12781343da83b4e
-
SHA512
c86d13f1074ad5aa5631ae790e9da1f00ac793239f5e7807079fb1bd2561b291a862c15a3638bc238ee98f399c48c39eeb9e963e95f2a6a3ab83226a9c629d3c
-
SSDEEP
49152:jCsWDF04KyL+PmWmN9Hm617pehAJoCO2H:GsWD5KyQmWCH57pQAJo12
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 22bcab93a65f1de9a60a56bd3e39190c58d09ceb59d123a9d12781343da83b4e
Files
-
22bcab93a65f1de9a60a56bd3e39190c58d09ceb59d123a9d12781343da83b4e.exe windows:6 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 183KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
tcghasza Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
cvionlri Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taggant Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE