Behavioral task
behavioral1
Sample
15f7e7c2071f6c50f6a4c9122eb04f2d0eb2d1380a2c4f1f2548f1040ba682ba.exe
Resource
win7-20220812-en
General
-
Target
15f7e7c2071f6c50f6a4c9122eb04f2d0eb2d1380a2c4f1f2548f1040ba682ba
-
Size
4.0MB
-
MD5
6cee123a08c4abe14f9260912e94670c
-
SHA1
3f9fa02cffb75efb677f1c80e6aea88e9c9992e4
-
SHA256
15f7e7c2071f6c50f6a4c9122eb04f2d0eb2d1380a2c4f1f2548f1040ba682ba
-
SHA512
9961efd7d8d20a1b48130dbc08e0b0ce8077e3695ac7f99ae8c99a72d8f8a4792f548edf43e2658e1903c946a1b1fd6f651dddc3c994daa943b751bbc2a0c610
-
SSDEEP
98304:UJEsc65nQ3gI9hTArmnSGsfZ9706OzEvsCO1a+X:6EFMnWlTAr+Sdx970BMia+
Malware Config
Signatures
-
Processes:
resource yara_rule sample upx
Files
-
15f7e7c2071f6c50f6a4c9122eb04f2d0eb2d1380a2c4f1f2548f1040ba682ba.exe windows x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 10.0MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4.0MB - Virtual size: 4.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE