Static task
static1
Behavioral task
behavioral1
Sample
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d.exe
Resource
win10v2004-20240508-en
General
-
Target
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d
-
Size
1.7MB
-
MD5
82b16a4409a2a9b895b1223722aaf72a
-
SHA1
c1eb071cbf3ef74d57448bed6f4473b62ea6b4b6
-
SHA256
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d
-
SHA512
9b3b3acb9962e3d0028d97b9c68813eb663256729b004ab8a62b567dc50146fa5fe40dfc679e14e4305623277d506f68e70b7ab57b1b22e96250c3f203fb00be
-
SSDEEP
24576:qMyptg5dkAmL8jyLQLNW0yzotcSHVZwMz8gkyJ8fPg:3te3g
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d
Files
-
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ