Behavioral task
behavioral1
Sample
1cd3311114b9cbf0eea6ed68eabd2fdf.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
1cd3311114b9cbf0eea6ed68eabd2fdf.exe
Resource
win10v2004-20231215-en
General
-
Target
1cd3311114b9cbf0eea6ed68eabd2fdf
-
Size
53KB
-
MD5
1cd3311114b9cbf0eea6ed68eabd2fdf
-
SHA1
d4917db990e0d887c5eee8ee15bffe70a76dcc0a
-
SHA256
6015172969980a914201eab3170de092720924c44e82a48afbc46b9ceb8af219
-
SHA512
50f196698b3bb4e9f8311e4b5379d2b5a3ca124286e9520682d9fed8faaa6af7f265f49e6d5414b0b9bc7c457081de268d882c97b478f771d151745f2399b1f3
-
SSDEEP
1536:SKcR4mjD9r823FcuRp4ZTk7UdE/fbl6xDjlS:SKcWmjRrz3iU/UdObwxfw
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1cd3311114b9cbf0eea6ed68eabd2fdf
Files
-
1cd3311114b9cbf0eea6ed68eabd2fdf.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 56KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 24KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE