Behavioral task
behavioral1
Sample
f20f3dc27064d7c6f182618f09b2165af0ece199e3bc351760f2c929e80a5d7a.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
f20f3dc27064d7c6f182618f09b2165af0ece199e3bc351760f2c929e80a5d7a.exe
Resource
win10v2004-20220901-en
General
-
Target
f20f3dc27064d7c6f182618f09b2165af0ece199e3bc351760f2c929e80a5d7a
-
Size
4KB
-
MD5
6f1280ece3bff792c8c5b09ba74ac4d7
-
SHA1
1966d75c3e85aa44c6e76b26096b552c2ff2248b
-
SHA256
f20f3dc27064d7c6f182618f09b2165af0ece199e3bc351760f2c929e80a5d7a
-
SHA512
ddc763bfbeca42303cf279260533af07aa76be5153566b9b5ad0754037b777f3830da703e2b968e772e23a55f34157eb2a7e7132b27ae8f64ef1967a19370238
Malware Config
Signatures
-
resource yara_rule sample upx
Files
-
f20f3dc27064d7c6f182618f09b2165af0ece199e3bc351760f2c929e80a5d7a.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 20KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 80KB - Virtual size: 80KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE