Behavioral task
behavioral1
Sample
7a11c4de2e109cb1da52f7fb602e1c7a.exe
Resource
win7-20231215-en
General
-
Target
7a11c4de2e109cb1da52f7fb602e1c7a
-
Size
784KB
-
MD5
7a11c4de2e109cb1da52f7fb602e1c7a
-
SHA1
3f70fef80ac8fff272ae464603ec163467992db7
-
SHA256
569baecf0d20e98353a877cb60103a91b61f26ceaa9609ed59e4b08880ee80d6
-
SHA512
0fb672afe9d90656eef2686ea64aaed6ef917a728f55a9bf0b1f89b153e56b670913a2526bb79cdc0115383c4564ae01cb097ed40dc445560fc0c7bc817902a7
-
SSDEEP
12288:elfbckcRLTHUouJCWMgAgkNGQ99vXBfYOI6LOQR1bRvvIRVNO3yXHqbpn562FTlh:eizREouo+AZNGQ91BROYVY3erTFTtUQ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7a11c4de2e109cb1da52f7fb602e1c7a
Files
-
7a11c4de2e109cb1da52f7fb602e1c7a.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE