Behavioral task
behavioral1
Sample
404174a43d18fb40766a1998f4707ec8.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
404174a43d18fb40766a1998f4707ec8.exe
Resource
win10v2004-20231215-en
General
-
Target
404174a43d18fb40766a1998f4707ec8
-
Size
133KB
-
MD5
404174a43d18fb40766a1998f4707ec8
-
SHA1
ff0569154eab601169081fadde2f5b5215c47f62
-
SHA256
4a6cb308604b0f9b5badf1f01d4da552d7e416c331151951af7152a0453352e5
-
SHA512
d5f781e12b5788cf6eb7ff671ec71e7402ed37d6e2c40b51649a6ebc72c537c5e8bccb933235fa76adbc9183fc889473eaa5d41a5772af3c0c7cbddcdd3409cf
-
SSDEEP
3072:jBM8vppykId3orP8sqkK3ny67zAbZL4niLaXdevMJ4BowTs2oeeAgLWqQ:jBM8vekId3EP8NZnPQbZIXdyA4SwTcjQ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 404174a43d18fb40766a1998f4707ec8
Files
-
404174a43d18fb40766a1998f4707ec8.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 396KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 131KB - Virtual size: 132KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE