Behavioral task
behavioral1
Sample
062e261d5e5ed298813d1b5cc523ee75.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
062e261d5e5ed298813d1b5cc523ee75.exe
Resource
win10v2004-20231215-en
General
-
Target
062e261d5e5ed298813d1b5cc523ee75
-
Size
5.0MB
-
MD5
062e261d5e5ed298813d1b5cc523ee75
-
SHA1
ae0b77de7ae07ef480d1b462415307ee6901e797
-
SHA256
d462d3458c20bb2256ebc8c4b7c850966c945000ede7de532ab520bd778a880a
-
SHA512
1f0b6c8670abb3144d05212c819b4e2f21a099017bc6118f7fee25f63b91b5529677d7b176e1b3d911b9cc6d10f5ae557252200a4f97cefbc48ca5ca8f9402c8
-
SSDEEP
49152:0u6gtiqavX01K8ZflCpFu0V2W6dcvk/ivmjDY2RjHAAbEMJbfqYRL7Rd:BbavXaK8ZaAe62M7jDYwHIMJrqmR
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 062e261d5e5ed298813d1b5cc523ee75
Files
-
062e261d5e5ed298813d1b5cc523ee75.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 6.5MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 2.2MB - Virtual size: 2.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 159KB - Virtual size: 160KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE