Behavioral task
behavioral1
Sample
f9a7c23bc0a944dd440a5aeec42828485602fbf3c08f20a8e8f2e02aa21df7cf.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
f9a7c23bc0a944dd440a5aeec42828485602fbf3c08f20a8e8f2e02aa21df7cf.exe
Resource
win10v2004-20220812-en
General
-
Target
f9a7c23bc0a944dd440a5aeec42828485602fbf3c08f20a8e8f2e02aa21df7cf
-
Size
791KB
-
MD5
0df9a7d992133b5bca2cb982c7784680
-
SHA1
079a6a4a58c6226c600110da55dd3a8d58caf512
-
SHA256
f9a7c23bc0a944dd440a5aeec42828485602fbf3c08f20a8e8f2e02aa21df7cf
-
SHA512
a81178424d72a52edc4ccda6d8943d430dc1ac6fe533475c667d2379b41542d008d7b7cb25b8f7da50e86282e9a6ac2af660dc0520b725c1a115c7c6ef755ef0
-
SSDEEP
12288:82SlGy8Q+AQ+by/yS5syS5Z5Z5sy/y/y/yS5Z5Z5Z5Z5Z5Z5syS5syS5syg:82SlT8sqa2eaaaO22g
Malware Config
Signatures
-
resource yara_rule sample upx
Files
-
f9a7c23bc0a944dd440a5aeec42828485602fbf3c08f20a8e8f2e02aa21df7cf.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 60KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 5KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
out.upx.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.bss Size: - Virtual size: 46KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE