Static task
static1
Behavioral task
behavioral1
Sample
16335a1172a838611368645dab4446c79b750e3159a6d9f95556d420c559f469.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
16335a1172a838611368645dab4446c79b750e3159a6d9f95556d420c559f469.exe
Resource
win10v2004-20240611-en
General
-
Target
16335a1172a838611368645dab4446c79b750e3159a6d9f95556d420c559f469.exe
-
Size
482KB
-
MD5
9aaf0e13931abe17c27dd943b5835937
-
SHA1
8db76fa143b6e967cc9fe9b9ed441291ca055009
-
SHA256
16335a1172a838611368645dab4446c79b750e3159a6d9f95556d420c559f469
-
SHA512
05c9a9ba679f7155208c8928d45797c80c301eb46f3670c30759077ccd5edd6a82798bcb2eea325ab598197c4320277294af9ee51a01ac872755bcf206abdd23
-
SSDEEP
6144:wXuAPKbX9sDEXfmgVvUKm0RfeFdDcyfXZXTraIyErhT41fG5QDGiu/byyvDuBRgC:wXuBqDEvmYfsDcyfpXpTh5qDGiEv6BC
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 16335a1172a838611368645dab4446c79b750e3159a6d9f95556d420c559f469.exe
Files
-
16335a1172a838611368645dab4446c79b750e3159a6d9f95556d420c559f469.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 479KB - Virtual size: 479KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ