Behavioral task
behavioral1
Sample
46fc848434251d59b495a1046a36ecfa933ca7017724c522e5228b60828017ac.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
46fc848434251d59b495a1046a36ecfa933ca7017724c522e5228b60828017ac.exe
Resource
win10v2004-20230915-en
General
-
Target
46fc848434251d59b495a1046a36ecfa933ca7017724c522e5228b60828017ac
-
Size
431KB
-
MD5
412d00439e441653034808310dd3f87c
-
SHA1
b30e9b1d043e9f3d074323c37e6b3e5e69a2d310
-
SHA256
46fc848434251d59b495a1046a36ecfa933ca7017724c522e5228b60828017ac
-
SHA512
ace742dd3ffcf6d5d8818468f9fafb5b6d56f702ff3dc180a676a0d975419a53161715fad742d9c94221802042ef0c9b6a765874a88764b7aebab0526b3e3198
-
SSDEEP
12288:lU0moyqj8x3alLynjGULxGNGxNL2Wd0dCHsKjy/oS:lUTooUynjG8xGN0R2WdU
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 46fc848434251d59b495a1046a36ecfa933ca7017724c522e5228b60828017ac
Files
-
46fc848434251d59b495a1046a36ecfa933ca7017724c522e5228b60828017ac.exe windows:4 windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 412KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 419KB - Virtual size: 420KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE