Behavioral task
behavioral1
Sample
xf-adsk2016_x86.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
xf-adsk2016_x86.exe
Resource
win10v2004-20230221-en
General
-
Target
xf-adsk2016_x86.rar
-
Size
291KB
-
MD5
3adfe0b59cd108eb52592968c416f944
-
SHA1
98e4e7589f13788e96c902dcf859bc4e699a08b0
-
SHA256
b59687ec72d0efaaa32f8f2477329b86f109a334922c558fe0bce34be8848d72
-
SHA512
c307de6559939b2cf9e908eab6081aed1b3bb20282a08b25cef2a49f49ad48287e2f9ecf0b02c6301d99f623e31785486f13dde47d8723df5e46c81d0c75f06a
-
SSDEEP
6144:uq46XLw66z2cMTqR/3YEahp8q/WrkOUh+ByAAVk:9XLC2cMOi/pEQNEAA8k
Malware Config
Signatures
-
resource yara_rule static1/unpack001/xf-adsk2016_x86.exe upx
Files
-
xf-adsk2016_x86.rar.rar
-
xf-adsk2016_x86.exe.exe windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 904KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 286KB - Virtual size: 288KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 9KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE