Behavioral task
behavioral1
Sample
15c253bc329ef6f86a796784cad14bee.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
15c253bc329ef6f86a796784cad14bee.exe
Resource
win10v2004-20231215-en
General
-
Target
15c253bc329ef6f86a796784cad14bee
-
Size
133KB
-
MD5
15c253bc329ef6f86a796784cad14bee
-
SHA1
780903758d46d530f1588c0d6f455a72e8168999
-
SHA256
51fad02a7c14ed64ff7b0cea1663aa7763cdaca8d434892b78762fd43937fe72
-
SHA512
e2232a00d240962699626988f2f97027f8b83a17f5c04a8bbd69b05505ed94a09c7a93b91c72c77406b85033774091f06b1311c89a38d32fa3e918332d3e731f
-
SSDEEP
3072:XzhRBVlRfAQldee4E6BDvYFjs8LNXhECUv7KxcWIkQ:XzvPf/4h1BDwFhh94CcpkQ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 15c253bc329ef6f86a796784cad14bee
Files
-
15c253bc329ef6f86a796784cad14bee.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 396KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 131KB - Virtual size: 132KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE