Static task
static1
Behavioral task
behavioral1
Sample
ba57e3301a4fe3b136f3126dc717b55c40b1e6a3ef9f951b9b85ede731d61de2.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
ba57e3301a4fe3b136f3126dc717b55c40b1e6a3ef9f951b9b85ede731d61de2.exe
Resource
win10-en-20211208
General
-
Target
ba57e3301a4fe3b136f3126dc717b55c40b1e6a3ef9f951b9b85ede731d61de2
-
Size
17KB
-
MD5
9fb3e3d1225cfcd817bf738e9679f7bb
-
SHA1
ae2fa958bda51615d52fa72aa95a3d27656e7745
-
SHA256
ba57e3301a4fe3b136f3126dc717b55c40b1e6a3ef9f951b9b85ede731d61de2
-
SHA512
8402109f3109869aa4def46cf58756bf7f72dfa82321643a33d720441ffd122fab68e96cb12c1e2321f11f65b1a76773aa18f499adfa77834e733b3cead0792b
-
SSDEEP
384:qGyUrEk/yEoQE+yckIYN/pBa3AWK3T2oTboHblKR/:N4klFypIYFpB/x9ngb
Malware Config
Signatures
-
Processes:
resource yara_rule sample upx
Files
-
ba57e3301a4fe3b136f3126dc717b55c40b1e6a3ef9f951b9b85ede731d61de2.exe windows x86
Code Sign
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 40KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE