Static task
static1
Behavioral task
behavioral1
Sample
PO UAPO00060923.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
PO UAPO00060923.exe
Resource
win10v2004-20230915-en
General
-
Target
PO UAPO00060923.exe
-
Size
586KB
-
MD5
63eac08a3dc1ce9b6ae7ba733a73422e
-
SHA1
8cff5e582cf74c799ba4dcde9b8c65d601735446
-
SHA256
83c7cc2ec5eed8e246ebcffdf849c712f9c6a624e4b8852dbee04d9afefa49ce
-
SHA512
628e926d29844ecd3762fab33d36d65a406930d12d322b8cf009ce7519b0237cb3f9ef1fd185e5d1e2c3c822bb77f7fca771c7336eb55374b7afd215d21b0353
-
SSDEEP
12288:EQYX9KUwy1VJyOsHJa1V2JZJbhrz8LWo4Vbjhpm:ot+AVkOkk1yDWW1vhw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource PO UAPO00060923.exe
Files
-
PO UAPO00060923.exe.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 584KB - Virtual size: 583KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ