Static task
static1
Behavioral task
behavioral1
Sample
2aeac076f9c2dc2654145d6d692b53abd690a9b3b5ee39948ab60776c7c505d0.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2aeac076f9c2dc2654145d6d692b53abd690a9b3b5ee39948ab60776c7c505d0.exe
Resource
win10v2004-20240508-en
General
-
Target
2aeac076f9c2dc2654145d6d692b53abd690a9b3b5ee39948ab60776c7c505d0.exe
-
Size
521KB
-
MD5
4eb54676ea00737dcea8d00cf280853e
-
SHA1
2411e8a3e1c1ddf6d60e0882ad743b0ddbd55d16
-
SHA256
2aeac076f9c2dc2654145d6d692b53abd690a9b3b5ee39948ab60776c7c505d0
-
SHA512
8e8f71e1d8fc32f2f1a2de9243fc7a653fb92c2244f6d9b3a107073a24e176748884f5894afacee8c8345eddfa4f40d4c24272631298293b8cf853929e17ca45
-
SSDEEP
6144:cTVFZInd6Xcfg9UQl4OFLlAmBHSzhcFhliiryHJfuWBjjWuK5ReBCcaIbM5:c5kndmtlPFLlfBHY2Qt2WBLmsBCci5
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 2aeac076f9c2dc2654145d6d692b53abd690a9b3b5ee39948ab60776c7c505d0.exe
Files
-
2aeac076f9c2dc2654145d6d692b53abd690a9b3b5ee39948ab60776c7c505d0.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 518KB - Virtual size: 518KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ