Static task
static1
Behavioral task
behavioral1
Sample
3e6f5b34df415cd738ae52e38334919b769511b0412b5dad33220e1c9460a92f.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
3e6f5b34df415cd738ae52e38334919b769511b0412b5dad33220e1c9460a92f.exe
Resource
win10v2004-20240611-en
General
-
Target
3e6f5b34df415cd738ae52e38334919b769511b0412b5dad33220e1c9460a92f
-
Size
3.3MB
-
MD5
5b266570c1fe5d5d78aecb6c5681877d
-
SHA1
10fda5ba1b1c7c73dfc906c7a0bbeafe6f52d99e
-
SHA256
3e6f5b34df415cd738ae52e38334919b769511b0412b5dad33220e1c9460a92f
-
SHA512
5e9734f5255d588864cbcd7b7f79e2a10c8670a0162a49acb363fd40ce7f01456178e5db9c54f1c111ecbc5b2fcc46dfaf8ea8146231ef348f79cea5ba6935b1
-
SSDEEP
12288:+/cwLkICZGikzWCClzuQtL87W7j/7Q5pkgitsC022DONtFDibX9z:+dLaCMLtY7WHD43ayQLYp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 3e6f5b34df415cd738ae52e38334919b769511b0412b5dad33220e1c9460a92f
Files
-
3e6f5b34df415cd738ae52e38334919b769511b0412b5dad33220e1c9460a92f.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 13KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ