Static task
static1
Behavioral task
behavioral1
Sample
af86c7d38b436ded683e7a304f9200312aaa8e283c31de972bfabcd87a857a1b.exe
Resource
win7-en-20211208
General
-
Target
af86c7d38b436ded683e7a304f9200312aaa8e283c31de972bfabcd87a857a1b
-
Size
345KB
-
MD5
0c833750e80fcd47f8bb34cad797eac4
-
SHA1
4da0a4d9e96cb5ee8a5b027555ef5f632cf854ee
-
SHA256
af86c7d38b436ded683e7a304f9200312aaa8e283c31de972bfabcd87a857a1b
-
SHA512
89dd5dfb977ed05ced9c8fde070cd6c0efa169e6dd7e5f93870a8035e8f2a02875e931c0748bc4457c1a74fbb928e1fda1ebb53d311d45296517723bcadaacc6
-
SSDEEP
6144:k+3Sl2bONINfjf/j6f0Cq33h+TE+U48Fru5BgEj75ON21FPUb9rP+RySvYLqki8:3m2JNz76fnygRnn5O8+79SvTOei8qej
Malware Config
Signatures
-
Processes:
resource yara_rule sample upx
Files
-
af86c7d38b436ded683e7a304f9200312aaa8e283c31de972bfabcd87a857a1b.exe windows x86
Code Sign
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 600KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 259KB - Virtual size: 260KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rmnet Size: 56KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE