Behavioral task
behavioral1
Sample
4da1bf9d8c3d454f9417fecfc0bb6237.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
4da1bf9d8c3d454f9417fecfc0bb6237.exe
Resource
win10v2004-20231215-en
General
-
Target
4da1bf9d8c3d454f9417fecfc0bb6237
-
Size
247KB
-
MD5
4da1bf9d8c3d454f9417fecfc0bb6237
-
SHA1
38f718b0dc374270a8d48fb474856f007efce3b6
-
SHA256
e5249fa0caeba1a337849bfbf7d2cb1eb3c9fd2d09896d0ed3b2a84365754241
-
SHA512
c8c3040d9668cb03b2d502185891b2927d9f52ab0a846553060f72b4df7a1fcd8d729e1686c719dacd42aed20a398adfd422fc5bceb93b94b03414557c92c829
-
SSDEEP
6144:w17ZnxeJb60hbw0sOkCdXFpyT5Bwd2hN:sNnW5DkCdTyQI
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4da1bf9d8c3d454f9417fecfc0bb6237
Files
-
4da1bf9d8c3d454f9417fecfc0bb6237.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 68KB - Virtual size: 68KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 173KB - Virtual size: 176KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 32KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE