Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220901-en
General
-
Target
file.exe
-
Size
5.1MB
-
MD5
6a57fbb0e98ddadfad2e5b2b77bd173d
-
SHA1
e499a96fbc6b31983700dd6f46fb8accfe5b6d7b
-
SHA256
728087cc29471a014dddfe70539aa41027970a6862d438b600e47bbdf52afc26
-
SHA512
44a2ee124faa9df7a83daa77d0cf041aee30ab7278895b199d8ca7d0f4d21150ccbb1de3f869fd88cfe145cd8894204cde51402f1d94373af4aa118148f46524
-
SSDEEP
98304:AAf+f/pCZ7VoGQIeXzZ9280Gg13yhm/N3Adt4o+nQ0oAqI:AAGf/UpBqXzZh0GJUq4okoAP
Malware Config
Signatures
-
resource yara_rule sample upx
Files
-
file.exe.exe windows x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 13.5MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 5.1MB - Virtual size: 5.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE