Behavioral task
behavioral1
Sample
df84ca1a8d969b548a9f2b4ba75db8aefb132e6b4660edb349998b6085c5252a.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
df84ca1a8d969b548a9f2b4ba75db8aefb132e6b4660edb349998b6085c5252a.exe
Resource
win10v2004-20220812-en
General
-
Target
df84ca1a8d969b548a9f2b4ba75db8aefb132e6b4660edb349998b6085c5252a
-
Size
65KB
-
MD5
4e8b865ddd5bf0807d2f6928a64c6faa
-
SHA1
8f9db27cfac6575c8461cffd9408f3ab2bb763c9
-
SHA256
df84ca1a8d969b548a9f2b4ba75db8aefb132e6b4660edb349998b6085c5252a
-
SHA512
8dc9c5e8a5afb2da20ac27b47bf371ac37b0dfee38a24bf42bbcc12e6c8c0fec6266a0ecaba8abbe9cd5aa3f38c431ffb1b236af629c01ff8a3b7a2f9627dd94
-
SSDEEP
1536:NLcNkL8H9jImXrGFtPB9v3Vip0q3d5w6pH6yJzjHG:9qkLWjrw9tc0MVhjHG
Malware Config
Signatures
-
resource yara_rule sample upx
Files
-
df84ca1a8d969b548a9f2b4ba75db8aefb132e6b4660edb349998b6085c5252a.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 44KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ssrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE