Behavioral task
behavioral1
Sample
187c0efbad3f043e8fd75c1f707f73d16d69b68e81cbba52ee7ec09faf09fc80.exe
Resource
win7-20231020-en
General
-
Target
187c0efbad3f043e8fd75c1f707f73d16d69b68e81cbba52ee7ec09faf09fc80
-
Size
257KB
-
MD5
648c192ed1c955cc04382acbec554c68
-
SHA1
1e50418b412142fee80161d02d3e2648bf3ec85c
-
SHA256
187c0efbad3f043e8fd75c1f707f73d16d69b68e81cbba52ee7ec09faf09fc80
-
SHA512
693889ade2a3835b664b83d72f54a1c0c31b1d1b455b5c7b0d7fc679d4b72e7ed5dedf21ec4863081dcf3f66487ca9bc3cd33eb2cfadc71ccc8eb0f0c687e1f7
-
SSDEEP
6144:FGbZ3wBC46Mlcu2oSfJdEDH/mX9icq2gKqT:MbZgBUbFoSgDH/mNicxvg
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 187c0efbad3f043e8fd75c1f707f73d16d69b68e81cbba52ee7ec09faf09fc80
Files
-
187c0efbad3f043e8fd75c1f707f73d16d69b68e81cbba52ee7ec09faf09fc80.exe windows:6 windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 524KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 124KB - Virtual size: 124KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 132KB - Virtual size: 136KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE