Static task
static1
Behavioral task
behavioral1
Sample
4c3b65dd4922985d090d2c12598837727e199627e48fd19b071472382b240284.exe
Resource
win7-20240508-en
General
-
Target
4c3b65dd4922985d090d2c12598837727e199627e48fd19b071472382b240284.exe
-
Size
918KB
-
MD5
fb14abc040c25c13849b4c44308d962d
-
SHA1
60f55621f11075f2e3af4ae41baf2794a58d6a66
-
SHA256
4c3b65dd4922985d090d2c12598837727e199627e48fd19b071472382b240284
-
SHA512
c2fc0aaee60cafcea97f0158cc013ddff8dc097215375a94ddc633ff2abe14da36c54cfb1e9865bf89984e532c7951b19e1cf776d002c19b49698a5f55cae81b
-
SSDEEP
12288:90mTFhv5VQZ9WsgF91raePmsr55MGBoIaEXRavD7R5GsYG2ucI0zei:90m/x4xgF9hmDGFGeGVKf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 4c3b65dd4922985d090d2c12598837727e199627e48fd19b071472382b240284.exe
Files
-
4c3b65dd4922985d090d2c12598837727e199627e48fd19b071472382b240284.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
mscoree
_CorExeMain
Sections
.text Size: 907KB - Virtual size: 907KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ