Behavioral task
behavioral1
Sample
24fbb233e695d0182ee29cc2b90cfceb.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
24fbb233e695d0182ee29cc2b90cfceb.exe
Resource
win10v2004-20231222-en
General
-
Target
24fbb233e695d0182ee29cc2b90cfceb
-
Size
1.5MB
-
MD5
24fbb233e695d0182ee29cc2b90cfceb
-
SHA1
00bbfc7bf22d36df04a14d3a9e1e4e7d2c261723
-
SHA256
c4e8bdb0d82cf552056e0b339aa92894c8eb9334c2c884d80a98e76b7d9ae911
-
SHA512
f4eaaaf89f69013653908dba88ea1c3a71db0ff0bdc1eb97e7ece1dc235b6c6da20d956a01414683cbc331ab7382e4ea03ae62fb6affa92305217abe16801e8a
-
SSDEEP
24576:f9z07F6zDVK4BcjukL2IIqQgdf7LB8C5Wf8MDBapcjukL2Y:f9z0AVlBcakLPIXgdfHBL5WEMDBapcaM
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 24fbb233e695d0182ee29cc2b90cfceb
Files
-
24fbb233e695d0182ee29cc2b90cfceb.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 1.9MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 500KB - Virtual size: 504KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE