Behavioral task
behavioral1
Sample
e26ef1e7948058991af44a1fe10e7cc2acc320ee53a9f6ab88f7a064e399c4f4.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
e26ef1e7948058991af44a1fe10e7cc2acc320ee53a9f6ab88f7a064e399c4f4.exe
Resource
win10v2004-20220812-en
General
-
Target
e26ef1e7948058991af44a1fe10e7cc2acc320ee53a9f6ab88f7a064e399c4f4
-
Size
498KB
-
MD5
c3b0d4f3bc6b95977bb73a065d533520
-
SHA1
32f1b3da53acf8416d2d37db083f99a31223e3d8
-
SHA256
e26ef1e7948058991af44a1fe10e7cc2acc320ee53a9f6ab88f7a064e399c4f4
-
SHA512
864dcf9644445584ff24eaf0c143641ad1a00852c1ce340a4b3e4fed490467c1b09c2f30c687be7f184d37ef68a24d1bd39d982729199cd3cfd842b25c1e35a2
-
SSDEEP
6144:k1lPWh9sdZmv1dTze5B+fEDtDvq5C748xBAMTF4hPgZel8E3ghtK0pFsBj607hw6:uP5ZIZzeiIzqETHANl8o6VFss07N7
Malware Config
Signatures
-
Processes:
resource yara_rule sample upx
Files
-
e26ef1e7948058991af44a1fe10e7cc2acc320ee53a9f6ab88f7a064e399c4f4.exe windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 580KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 217KB - Virtual size: 220KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 107KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.wtq Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE