Behavioral task
behavioral1
Sample
26785a8684b27249788a39ba9dee5e7eb3c4f2d9587d883b802015d6c3c73c79.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
26785a8684b27249788a39ba9dee5e7eb3c4f2d9587d883b802015d6c3c73c79.exe
Resource
win10v2004-20220812-en
General
-
Target
26785a8684b27249788a39ba9dee5e7eb3c4f2d9587d883b802015d6c3c73c79
-
Size
1.1MB
-
MD5
65dd011648e8dddf77f0c266cb383229
-
SHA1
76d0dc8f7d3d283e77ae19a55ad8e3c0534a898d
-
SHA256
26785a8684b27249788a39ba9dee5e7eb3c4f2d9587d883b802015d6c3c73c79
-
SHA512
c3fdedb77779a24a6dcaa76e11fc344360444e9b78864d18bdde29c4ce3b910856d2ccf459814879438fdf1a1dbf9b331efbeb5b6ea4a7fe852e4e05a991c1af
-
SSDEEP
24576:ignlXTS4MtzZ6iVbTqD1WXUtdhnQfUGTpWwj+O3cOSNqtPloJ5aTu:JnlXTcYix4eORoTGtOSgPCJ
Malware Config
Signatures
-
resource yara_rule sample upx
Files
-
26785a8684b27249788a39ba9dee5e7eb3c4f2d9587d883b802015d6c3c73c79.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 47KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.spm Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE