Behavioral task
behavioral1
Sample
40f21e936dcec005add8f1aaa4d332fa.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
40f21e936dcec005add8f1aaa4d332fa.exe
Resource
win10v2004-20231215-en
General
-
Target
40f21e936dcec005add8f1aaa4d332fa
-
Size
240KB
-
MD5
40f21e936dcec005add8f1aaa4d332fa
-
SHA1
2bd98cb50305ce58d2a397e8890fd2fc8d9f0a5c
-
SHA256
ce5804c5e440f29d931c8ced3179cef7cc9968d08651c2017bf8231915b346e0
-
SHA512
22acf04458c7c6771857e6737ecd07a74881bfb92494f129f7b22c53ed8db8c4f817ec1a03c78635866767a7e26b91095f4b15f721f4f5015f0d3c66dafb701d
-
SSDEEP
3072:8RRSuEEFOZuswPjCEHpu35Vk6HSngNrlpjWHg40bfeNXDxkXFIyqQ4ZSA2Z81:cRSXEFx5Hw3FL7RagXORQ+V
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 40f21e936dcec005add8f1aaa4d332fa
Files
-
40f21e936dcec005add8f1aaa4d332fa.exe windows:6 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 108KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 114KB - Virtual size: 116KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 121KB - Virtual size: 124KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE