Behavioral task
behavioral1
Sample
60213648e728d26603804f03cc97fe56.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
60213648e728d26603804f03cc97fe56.exe
Resource
win10v2004-20231215-en
General
-
Target
60213648e728d26603804f03cc97fe56
-
Size
291KB
-
MD5
60213648e728d26603804f03cc97fe56
-
SHA1
8116c382c3d089d6cb69a9f00226e81b1a3dd99f
-
SHA256
5c118a32dc827da5b17624e6d21126a66fe9ac36367d019cc45aeae0318d815c
-
SHA512
8d6c1c07daed40557927b3732386873856e6be0ad297c01675c3e2e2249f7381a37d86738354b3b3a8a8c41dabb4ab12ff390291e19924c94456825c16713b22
-
SSDEEP
6144:cD7cY2fgssM7Wirg9KXylmRiL+QMeC/i6isqX7UovnONztByipwxZd0TqX:cl8E4w5huat7UovONzbXwx0TqX
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 60213648e728d26603804f03cc97fe56
Files
-
60213648e728d26603804f03cc97fe56.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: - Virtual size: 524KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 248KB - Virtual size: 248KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 42KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE