Behavioral task
behavioral1
Sample
f63a6db3e277b46a3047715e733e5b21.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
f63a6db3e277b46a3047715e733e5b21.exe
Resource
win10v2004-20231215-en
General
-
Target
f63a6db3e277b46a3047715e733e5b21
-
Size
1.8MB
-
MD5
f63a6db3e277b46a3047715e733e5b21
-
SHA1
48b11de7c5118ada1499218e987e09d37244b50e
-
SHA256
88e1ed068c817361c3bac5819407931d3089e3e518b8001de6614fdda9752f5d
-
SHA512
bc8c65ec2a97d7123828478dbcb62ba3a8f97236baf3adcea14442994fa683e202091459dd893cd2742c8fa6e5e9b5be8ef60bd4f3f38ae36221a94a4c702b0d
-
SSDEEP
24576:S6pQPxQ2JyP2r5mJV91xM7RpbwgIvs7Nxqo:SCqm2Jpr0nNM7Dus7Nx1
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f63a6db3e277b46a3047715e733e5b21
Files
-
f63a6db3e277b46a3047715e733e5b21.exe windows:4 windows x64 arch:x64
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 616KB - Virtual size: 620KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE