Behavioral task
behavioral1
Sample
1139eabcf5d1f074a41cc27754091bb92cefd72abb494157574f9bb90a746bf7.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
1139eabcf5d1f074a41cc27754091bb92cefd72abb494157574f9bb90a746bf7.exe
Resource
win10v2004-20230915-en
General
-
Target
1139eabcf5d1f074a41cc27754091bb92cefd72abb494157574f9bb90a746bf7
-
Size
377KB
-
MD5
c3a207dd6ad604ef12e42d60b2438c27
-
SHA1
7af1635e5eedc4a29f6613c5a05859523ccc85b0
-
SHA256
1139eabcf5d1f074a41cc27754091bb92cefd72abb494157574f9bb90a746bf7
-
SHA512
cbd1953d14fb28b9290a16034751d7453bd0b3165531c3707b07bb0583431563fceccfdf9ce711e00df7debe693ff22410d7a5bb0796fa15ae0e508635d07f43
-
SSDEEP
6144:XmQujWRCe6DA0czUUt4O3ONfaZWfkIWJAEJPgVfJE3mNCjZpx:XrusCe6DA0c9h6cWfk9JAEIfJEQCjZ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1139eabcf5d1f074a41cc27754091bb92cefd72abb494157574f9bb90a746bf7
Files
-
1139eabcf5d1f074a41cc27754091bb92cefd72abb494157574f9bb90a746bf7.exe windows:4 windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 1.8MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 276KB - Virtual size: 276KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 100KB - Virtual size: 100KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE