Behavioral task
behavioral1
Sample
055f82f1ebde138b198cef5a7226eabe.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
055f82f1ebde138b198cef5a7226eabe.exe
Resource
win10v2004-20231215-en
General
-
Target
055f82f1ebde138b198cef5a7226eabe
-
Size
42KB
-
MD5
055f82f1ebde138b198cef5a7226eabe
-
SHA1
20a6bbb502cc54433b924a23e78fd5e81d138766
-
SHA256
54666c03665122f89a43a0c48ff3591dd69b114fce5d2ae8f85a375a1c50f533
-
SHA512
952ac4942f2f8e6e340532d65d54d5643029a34414d8234bd9cf6cd512c91a87ed1c1fa736a5418ace96db8772596c9ee6010928c38c43c72ac4095f0107653d
-
SSDEEP
768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFs3S9Z4B4cLtkpz6P:SKcR4mjD9r823Fsi9UI6P
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 055f82f1ebde138b198cef5a7226eabe
Files
-
055f82f1ebde138b198cef5a7226eabe.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 56KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 24KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE