Behavioral task
behavioral1
Sample
e139bedff7272d29a58b6058148485a6a051e78e8a7c27af9b4207445b55972c.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
e139bedff7272d29a58b6058148485a6a051e78e8a7c27af9b4207445b55972c.exe
Resource
win10v2004-20221111-en
General
-
Target
e139bedff7272d29a58b6058148485a6a051e78e8a7c27af9b4207445b55972c
-
Size
171KB
-
MD5
803fdad60a108f80a0e664405cc2e176
-
SHA1
1b1f296ac0d1c9d2a9ceba06dc6b059c6a86dcef
-
SHA256
e139bedff7272d29a58b6058148485a6a051e78e8a7c27af9b4207445b55972c
-
SHA512
feae207b9f3d7d261d67cb5baea813a65ebcd6204ba0896eb2ecfb2de6a3f585b7223a562541634c7d430d0d5cc8e962a97e8768c8f106d7e695953c911328a5
-
SSDEEP
3072:R9pxBqTJwFaaALjoLPNVw1ue/ViucaA+5q52We4iHV5gZBMAculva/vA962Pout:HPBqCcasYNTBQt0oF44/vN+oS
Malware Config
Signatures
-
resource yara_rule sample upx
Files
-
e139bedff7272d29a58b6058148485a6a051e78e8a7c27af9b4207445b55972c.exe windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 76KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 156KB - Virtual size: 156KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE