Behavioral task
behavioral1
Sample
9da1a34420fd1fa30ec9cf7bcd4505458c6496561ff43514269c84a91d0194c7.exe
Resource
win7-20220812-en
General
-
Target
9da1a34420fd1fa30ec9cf7bcd4505458c6496561ff43514269c84a91d0194c7
-
Size
453KB
-
MD5
00790b0fca652efe694e312c09e86110
-
SHA1
ac9f831610ced52e978983d2cb8464750e21f926
-
SHA256
9da1a34420fd1fa30ec9cf7bcd4505458c6496561ff43514269c84a91d0194c7
-
SHA512
af898502ff6af7843c90d669d71dca7f69f34acb0186d62b0dc6744e516bfea9aa97cb6c3da10d92f4e622f0b4601ef892667c64c49c86a7d36f7a1989f63512
-
SSDEEP
6144:+7UYntUlCVmbYiZEX2k+AxJj998C3r6Xzkrax/QvMe7KKlz4jgZGWY:gcEV8Z4J+3C3OdtQvMJ48jg0
Malware Config
Signatures
-
resource yara_rule sample upx
Files
-
9da1a34420fd1fa30ec9cf7bcd4505458c6496561ff43514269c84a91d0194c7.exe windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 364KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 196KB - Virtual size: 196KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 168KB - Virtual size: 216KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE