Behavioral task
behavioral1
Sample
2993463243d8374db5b1937f36f99419.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2993463243d8374db5b1937f36f99419.exe
Resource
win10v2004-20231215-en
General
-
Target
2993463243d8374db5b1937f36f99419
-
Size
11.0MB
-
MD5
2993463243d8374db5b1937f36f99419
-
SHA1
5a9e780eb16280f42eaebf3caac8d0a128367ea9
-
SHA256
2ab682fdafef8bd49a97ac132b34eab1b62ce383a87ce2cdc8a8d01a7e339e5c
-
SHA512
37cd5f88131f8f9b770a5abd50a0bde1cf19278213f4e65fca2642fc66d228d7222507e06d796628c95c9790cf148de6d7441305549e1ed29f333175a030d8d2
-
SSDEEP
98304:5Wqlc28SeN35mCckFR+vicS43uYmwqfw1voREBX+uOj35mCckFR+vicS43:Mv25eH33FR+6c9mNIuz33FR+6c
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2993463243d8374db5b1937f36f99419
Files
-
2993463243d8374db5b1937f36f99419.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 7.1MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 2.4MB - Virtual size: 2.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 208KB - Virtual size: 212KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE