Behavioral task
behavioral1
Sample
DEL.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
DEL.exe
Resource
win10v2004-20220901-en
General
-
Target
Sample_652f2ccf33a29a9c6d9ca1f20d2cb35bdd7aafaa-copy.zip
-
Size
80KB
-
MD5
36f4259259594f816657cb970152a50b
-
SHA1
638cd473b38dff09115bcfef3468f7ea69a365de
-
SHA256
07a66bd7e8898afaf9572d13c92f0d42a4bc98835f925720f362a11a58a96110
-
SHA512
d050e1e87b4a8cac116acb4f56d68ed285c2293e91e03064db57d54c74fe804a0d22b6ed4e8a8a09666fff34bb88e06ad8557dc22463389585043b1019b7f11b
-
SSDEEP
1536:OqAY2W4WUnQvJbWkbLzrVCbtE/EkAZjJNZu4nLI3oG18XU8:OzRWsn4JbWkb/ukEk8lu4nLIZiXU8
Malware Config
Signatures
-
Processes:
resource yara_rule static1/unpack001/DEL.exe upx
Files
-
Sample_652f2ccf33a29a9c6d9ca1f20d2cb35bdd7aafaa-copy.zip.zip
Password: infected
-
DEL.exe.exe windows x64
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
UPX0 Size: - Virtual size: 104KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 75KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE