Behavioral task
behavioral1
Sample
5ffc3d634e8989b4a9c27615117afa9d.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
5ffc3d634e8989b4a9c27615117afa9d.exe
Resource
win10v2004-20221111-en
General
-
Target
5ffc3d634e8989b4a9c27615117afa9d.exe
-
Size
59KB
-
MD5
5ffc3d634e8989b4a9c27615117afa9d
-
SHA1
95f0e2a408013d994448e8f8b552fb1494238d3d
-
SHA256
e0db37b6df269163676caf35a629e7bfabe8400703967f9ddc6c3111d99e7775
-
SHA512
93e06b951ed9227314e4f92c2e624a63289958f3bc23b8846a50d5a20d96ef7d6632ba0a22ab6fdd1c30071e741976d4e7158cd533567313cb1111f4bc25298d
-
SSDEEP
768:mNI41sOvvE1fFfjvbfLEjTspixL61BZ/J7iSD4B25fgOv14pQjvSMng24gnI1c:mKKsOHE1NDEjY5716BKfl4poSMnEx1c
Malware Config
Signatures
-
Processes:
resource yara_rule sample upx
Files
-
5ffc3d634e8989b4a9c27615117afa9d.exe.exe windows x64
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
UPX0 Size: - Virtual size: 88KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 56KB - Virtual size: 60KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE