Behavioral task
behavioral1
Sample
a35e11f7e7a8c3048a8f24c01255e61d7454b281e950b3500cdb4de75312ef2a.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
a35e11f7e7a8c3048a8f24c01255e61d7454b281e950b3500cdb4de75312ef2a.exe
Resource
win10v2004-20220812-en
General
-
Target
a35e11f7e7a8c3048a8f24c01255e61d7454b281e950b3500cdb4de75312ef2a
-
Size
229KB
-
MD5
595ab4664b4feadd2a0a2b24186cee3a
-
SHA1
bba3d0f6489e54fee2c824b26e906448566f8221
-
SHA256
a35e11f7e7a8c3048a8f24c01255e61d7454b281e950b3500cdb4de75312ef2a
-
SHA512
d6a1ec120e32285b31f223ea7a852d066a8e6132217bdca33620b305e4b6079d20173e8f9d6d56e61f4d519a3fbf9b6aa9e0553b20c0dbf9b4b72d33265c4ffb
-
SSDEEP
3072:o7by+Usta0MKI7dTBhLqtM4NbIS6k1+dUYRaJiubTuZlUv3dy:ePUrKuDh2C4NbISX1Tea8lu3
Malware Config
Signatures
-
resource yara_rule sample upx
Files
-
a35e11f7e7a8c3048a8f24c01255e61d7454b281e950b3500cdb4de75312ef2a.exe windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 364KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 195KB - Virtual size: 196KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 33KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE