Behavioral task
behavioral1
Sample
45dea480b3a8c22f313c644a7bfc8294.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
45dea480b3a8c22f313c644a7bfc8294.exe
Resource
win10v2004-20231222-en
General
-
Target
45dea480b3a8c22f313c644a7bfc8294
-
Size
297KB
-
MD5
45dea480b3a8c22f313c644a7bfc8294
-
SHA1
a1f263188d1e97d151e55a7ba7e7dc20a9ea34d1
-
SHA256
b9580d84f15c8659bb84fcef1de97aa88469e69449ad95d6df451b5da2e0a2d5
-
SHA512
fe560165f121a5aa753b9f0cc148b89ce6ebe02730a31f7bf2df5987c7b4174dbb36da7ed3b74413ed8dd54e5e1fea91f97ff128cf20820d8b324a61dff9edba
-
SSDEEP
3072:JY/6s+bA90Kv4T0swIg2sjO3zv4Ar0ESGA2+3Cbf0v7jb2j/YKNjonAXNjRdZ9nS:J/KO0bD2sjOjv42CG4Pb27T6A9jHZc
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 45dea480b3a8c22f313c644a7bfc8294
Files
-
45dea480b3a8c22f313c644a7bfc8294.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 196KB - Virtual size: 196KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 74KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE