Behavioral task
behavioral1
Sample
104157bf956aec0d32e0cd2fb67b3570.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
104157bf956aec0d32e0cd2fb67b3570.exe
Resource
win10v2004-20231215-en
General
-
Target
104157bf956aec0d32e0cd2fb67b3570
-
Size
1.2MB
-
MD5
104157bf956aec0d32e0cd2fb67b3570
-
SHA1
527ef46d7e4edd58a081386539146bac0cccf47d
-
SHA256
88dca93417f64558db8b623c95bb702754dbbd0a5d187dcd6b1c285d44ddb9b8
-
SHA512
74a847b20faaca0b416e3dcc9bf31306d73cac9704357b9872f8844e6d9650e100c0ffac611105f6b6365a7bec0615170c468041d5d7a08a466a0a353f7ddd10
-
SSDEEP
12288:cQwqtLcsKxC5vKe+q2mdqoA0nRk6P0AUmDoTvkf9GvBlSNFpq3pCmdqoA0nRk6PP:czs73KCdqoAZjEDoTMVLM51dqoAZjE
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 104157bf956aec0d32e0cd2fb67b3570
Files
-
104157bf956aec0d32e0cd2fb67b3570.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 588KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 195KB - Virtual size: 196KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 107KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE