Behavioral task
behavioral1
Sample
46beb656e21264f2cafb4c25d3358de9.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
46beb656e21264f2cafb4c25d3358de9.exe
Resource
win10v2004-20231215-en
General
-
Target
46beb656e21264f2cafb4c25d3358de9
-
Size
128KB
-
MD5
46beb656e21264f2cafb4c25d3358de9
-
SHA1
ca7ccc629627a7918b9419b7bc4b8c24b64062d0
-
SHA256
101f25af2535c3d82b17356c1f2ddd59d734d7aa97d67d9cbc78b2e354f86554
-
SHA512
c8a50a237e755aa5e815c7823d0ed068c0b05800000f2313f08b196ab305a88276689d39c6f21e57e8a685dfb6933f1e3851d82156a85d8f95040ceddbcff629
-
SSDEEP
768:SKi/GNyQkedYea/JnWrZtcrjcGqTTEu9+XS83hXX+P9tVBU7Tx7KAZWe93YDk/EZ:SjGkveW13qPaPgPfDUpGAZWe93YwS
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 46beb656e21264f2cafb4c25d3358de9
Files
-
46beb656e21264f2cafb4c25d3358de9.exe windows:10 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 104KB - Virtual size: 104KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE