Behavioral task
behavioral1
Sample
562be401fe139c44bc66f07c1bffa5bd.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
562be401fe139c44bc66f07c1bffa5bd.exe
Resource
win10v2004-20231215-en
General
-
Target
562be401fe139c44bc66f07c1bffa5bd
-
Size
2.9MB
-
MD5
562be401fe139c44bc66f07c1bffa5bd
-
SHA1
bd5978066b91a0d74e5b889387c455e60dbc72a6
-
SHA256
f3f87736fcf9ac05ab90a3a6586995d3f60e80f388c7920586a6c9b271aae316
-
SHA512
9565b337eb6b3494a5c221fd69dcd1cafdce10be492207a50902c6b73959317d65a4f73a096294d2b2271758a52f3f06e646f28915b6bfb7777a39b5fc505c85
-
SSDEEP
49152:Qk21E9W2c+8JmdW5JNN4OCTY2nS4QAZnoE9Baj8BBT4SfcsUjoh48TyMPkXdwkyZ:lW2P8JmOuDUf4fZnoEHau42c1joCjMP3
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 562be401fe139c44bc66f07c1bffa5bd
Files
-
562be401fe139c44bc66f07c1bffa5bd.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 3.6MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 135KB - Virtual size: 136KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE