Behavioral task
behavioral1
Sample
ca794e2239385927c281e36427cc100c4e1e729a3fa7576765d47130f7de5030.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ca794e2239385927c281e36427cc100c4e1e729a3fa7576765d47130f7de5030.exe
Resource
win10v2004-20220901-en
General
-
Target
ca794e2239385927c281e36427cc100c4e1e729a3fa7576765d47130f7de5030
-
Size
281KB
-
MD5
d8ff26c0e98d814cef4ec9e104e330f3
-
SHA1
ca36db97fd44c3d10493cdd489085b7e22f23623
-
SHA256
ca794e2239385927c281e36427cc100c4e1e729a3fa7576765d47130f7de5030
-
SHA512
b9ffcd529f7f70fabf6c8c5893bb357eaf6ca87bb6e8093f0485ac8c70d0414b3f8ea09f3d54008041e6de23cccd43a79f65e88c853ff7fba02f0f35128468a9
-
SSDEEP
6144:YTsdq7DPcECjPvI4sgiFiFGqM5zUvW5ViKB6YowUeycYGfwAH+XRB:fdqPfIt+4+i/eyRG+X
Malware Config
Signatures
-
resource yara_rule sample upx
Files
-
ca794e2239385927c281e36427cc100c4e1e729a3fa7576765d47130f7de5030.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: - Virtual size: 468KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 260KB - Virtual size: 260KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE