Behavioral task
behavioral1
Sample
4a68ee47fd872d1e7a957bd6c9585fec.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
4a68ee47fd872d1e7a957bd6c9585fec.exe
Resource
win10v2004-20231215-en
General
-
Target
4a68ee47fd872d1e7a957bd6c9585fec
-
Size
335KB
-
MD5
4a68ee47fd872d1e7a957bd6c9585fec
-
SHA1
47073e49ce1c87edce2f4850506ae038385388ea
-
SHA256
55c845306575a4f6c64875549cbfaa27c17425b905d3e9a7e1e9c41653b88dda
-
SHA512
d1a1658290cb464b0b8ccbad41ec0dae8c65baf85d98b38ad3ab56d6cfbea4b17f09b5226c49799cb974ed226e9718a8f0df2a2ff5a5ddb33c7260a45eb529bc
-
SSDEEP
6144:hGRqNA/2ffooKmtARQ+teJmlfV7irmdbOLhYQyDR/f064Y6Bs2Bk758Q:hvA2Io+RQ+teJmBV6mdUYQyDRX0fRmdX
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4a68ee47fd872d1e7a957bd6c9585fec
Files
-
4a68ee47fd872d1e7a957bd6c9585fec.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 56KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 24KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE