Behavioral task
behavioral1
Sample
ba8c8c515f0ed007ad2b458b078ec6e380a59822e3bca26deff9aba8c0c5cdf1.exe
Resource
win7-20231023-en
General
-
Target
ba8c8c515f0ed007ad2b458b078ec6e380a59822e3bca26deff9aba8c0c5cdf1
-
Size
340KB
-
MD5
a67d2841801b788b5d8270f6f0a97149
-
SHA1
76902021f7be7684754889a828ba01eaf15668ac
-
SHA256
ba8c8c515f0ed007ad2b458b078ec6e380a59822e3bca26deff9aba8c0c5cdf1
-
SHA512
52bdeace1de5f72fec1c71d773f280ff9c8f2993d7a7f41cba2eb1f65150acdaddb2cf54960fb703878261d57a5f79066a6c6fdf47fd625f8779d1d632b6f378
-
SSDEEP
6144:Zec6MmseEmeBTRsgATB61UNbU28nVVqrHyoRpcM/IoS3:Zec6y5W7oFR0W0/AoS3
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ba8c8c515f0ed007ad2b458b078ec6e380a59822e3bca26deff9aba8c0c5cdf1
Files
-
ba8c8c515f0ed007ad2b458b078ec6e380a59822e3bca26deff9aba8c0c5cdf1.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 784KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 337KB - Virtual size: 340KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 612B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ