Behavioral task
behavioral1
Sample
3cd2ef5438c9ddd4c672688bd9adb8b2.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
3cd2ef5438c9ddd4c672688bd9adb8b2.dll
Resource
win10v2004-20231222-en
General
-
Target
3cd2ef5438c9ddd4c672688bd9adb8b2
-
Size
922KB
-
MD5
3cd2ef5438c9ddd4c672688bd9adb8b2
-
SHA1
70cec6fb23fbfa670ac5dbbe8cccc5bd1b7974d2
-
SHA256
cb4bd435cfce36e40174e03e27eec800a06387b30d29c7168014b49ca8465875
-
SHA512
672cb3e8b43e01a25c4bcfbaf41f57c0c3e561bbec1e1c5ee59154877c5c0cbd5f8b1bcc9a56fec1374eca56ae304870d9a5a3b9bff4facb86a53be0e3b41ac3
-
SSDEEP
24576:vP5jwBH2cu+74U2avayhcai6ikXt0bw2LJjMJbnGwB:nWBH2Sua9h91tSw2FjMtd
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3cd2ef5438c9ddd4c672688bd9adb8b2
Files
-
3cd2ef5438c9ddd4c672688bd9adb8b2.dll windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
UPX0 Size: - Virtual size: 1.8MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 918KB - Virtual size: 920KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE