Behavioral task
behavioral1
Sample
50608b5a11436a4bb0ae350ac576a459892eba9a53f6edf5f141109d72063729.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
50608b5a11436a4bb0ae350ac576a459892eba9a53f6edf5f141109d72063729.exe
Resource
win10v2004-20230915-en
General
-
Target
50608b5a11436a4bb0ae350ac576a459892eba9a53f6edf5f141109d72063729
-
Size
302KB
-
MD5
353e3b755e7d3fb8bd455205bb16a918
-
SHA1
85d908eb4b15758bcfc562dd9ab527482c834c89
-
SHA256
50608b5a11436a4bb0ae350ac576a459892eba9a53f6edf5f141109d72063729
-
SHA512
dfac7964488e072e58c04430067d8a89d1773fc83a8895ab159621abfe50a559bd09a5745e0cf3bc9addd90b42d95bb2ca1e6fb23ef64d65cac7195aab0896ea
-
SSDEEP
6144:7Nq0oAlnofk5L8UWEtx8q0LB4xq6RHYQhS1Z7eCqx7OHPPzoSzpl6oH:hoRMyrEn8q+yL01Z7e3OHPPzoSD64
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 50608b5a11436a4bb0ae350ac576a459892eba9a53f6edf5f141109d72063729
Files
-
50608b5a11436a4bb0ae350ac576a459892eba9a53f6edf5f141109d72063729.exe windows:4 windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 540KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 266KB - Virtual size: 268KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 35KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE