Behavioral task
behavioral1
Sample
a09335c4e7dfbb1789383880087f648c.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
a09335c4e7dfbb1789383880087f648c.exe
Resource
win10v2004-20231215-en
General
-
Target
a09335c4e7dfbb1789383880087f648c
-
Size
87KB
-
MD5
a09335c4e7dfbb1789383880087f648c
-
SHA1
ab4ce31e20e1ef088cba69e46c0655d73ccc6402
-
SHA256
bb037880850ab4a74af403b0365fc541b90f66b6a84242e717c6cd5652a4e182
-
SHA512
523523f1a7b7b4bebf859570318773afc0dff88fae3ee511c6d00e3119024da95b317005db9a7dcac18106159e9fff53dffd06bf1db6df029b31c3637b9d9f41
-
SSDEEP
1536:s9Z3KcR4mjD9r8226+d9Z3KcR4mjD9r8226+DD+2HkDGQukEBxTdyTFkY:sr3KcWmjRrzSdr3KcWmjRrzSDD+2i5C6
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a09335c4e7dfbb1789383880087f648c
Files
-
a09335c4e7dfbb1789383880087f648c.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 56KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 24KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE