Behavioral task
behavioral1
Sample
1dcf5230b6544c7283775dfdc9a7f999.exe
Resource
win7-20231215-en
General
-
Target
1dcf5230b6544c7283775dfdc9a7f999
-
Size
784KB
-
MD5
1dcf5230b6544c7283775dfdc9a7f999
-
SHA1
d8ae78f58964a54b79bc3522faafe76e0e0308bc
-
SHA256
0d333c5257254f5434cdce6ad014416420eac6453b2dd0856791bf08d31c9efb
-
SHA512
d318a3cd7d0b88a5582410c03e29b2f6f4f2600696cbc75bd02a74be9eb42f714b95dd0715df26e04985e179a1209ad36e86c678a23563dc0152c0011e1fc337
-
SSDEEP
24576:WT4R8eiONM5jTgfw9NHJkXoQ8EO8MUOe:WkSjPgI9NpXQ8Eue
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1dcf5230b6544c7283775dfdc9a7f999
Files
-
1dcf5230b6544c7283775dfdc9a7f999.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE