Behavioral task
behavioral1
Sample
332b202e8d8ee22ec0fe1f1a95612d7b3444625c541c17539fef9e178cc216ee.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
332b202e8d8ee22ec0fe1f1a95612d7b3444625c541c17539fef9e178cc216ee.exe
Resource
win10v2004-20230831-en
General
-
Target
332b202e8d8ee22ec0fe1f1a95612d7b3444625c541c17539fef9e178cc216ee
-
Size
2.1MB
-
MD5
f48137def27f42241aebcb00acb352fa
-
SHA1
a87c85a02c0f55c700e7555346a7dd4c78b8c33b
-
SHA256
332b202e8d8ee22ec0fe1f1a95612d7b3444625c541c17539fef9e178cc216ee
-
SHA512
5b5fd9449139595623c95365e42ec2b33b7209e5529e8c3b6e53864f1a49cf2dea7e98ba9eecd3fe70719332435458e55faaea7e9fb11299dcd21a52b7a933c8
-
SSDEEP
49152:43F7Gx+29uWV9D489n+s8KuqGaX0ToIBAUZLYmL:Oa91PM+sJBAUZLPL
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 332b202e8d8ee22ec0fe1f1a95612d7b3444625c541c17539fef9e178cc216ee
Files
-
332b202e8d8ee22ec0fe1f1a95612d7b3444625c541c17539fef9e178cc216ee.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 3.0MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
UPX1 Size: 2.0MB - Virtual size: 2.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 61KB - Virtual size: 64KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE