bCoE.pdb
Static task
static1
Behavioral task
behavioral1
Sample
4a45b99ba18fc60bbe3bf3ca42a0c1e9ab35597a1863c4010f2477bfded40963.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
4a45b99ba18fc60bbe3bf3ca42a0c1e9ab35597a1863c4010f2477bfded40963.exe
Resource
win10v2004-20240704-en
General
-
Target
4a45b99ba18fc60bbe3bf3ca42a0c1e9ab35597a1863c4010f2477bfded40963.exe
-
Size
659KB
-
MD5
94a199c5872b9f03acc3ad7ffb076ec5
-
SHA1
730c80921d14df0b67a163583ba838e7038a5a54
-
SHA256
4a45b99ba18fc60bbe3bf3ca42a0c1e9ab35597a1863c4010f2477bfded40963
-
SHA512
f577fe0d2f711b26f6d9251097d881285847d6efe427794ea65958a6c50b0508f05e1e8dabbb3fd48a02412030e949f15730e4085299bb00a2aa9c7b6ed359e8
-
SSDEEP
12288:rFDofC1PbYKPhHX+p5qiuOiXE8Ds+OMpMqGJA+X5wgK9Vm+Zj:rFh1bj9yX5dMN+X5Q9Y+N
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 4a45b99ba18fc60bbe3bf3ca42a0c1e9ab35597a1863c4010f2477bfded40963.exe
Files
-
4a45b99ba18fc60bbe3bf3ca42a0c1e9ab35597a1863c4010f2477bfded40963.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 656KB - Virtual size: 656KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ