Behavioral task
behavioral1
Sample
59ab7366c79425102992e8e1a8fc2177.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
59ab7366c79425102992e8e1a8fc2177.exe
Resource
win10v2004-20231222-en
General
-
Target
59ab7366c79425102992e8e1a8fc2177
-
Size
936KB
-
MD5
59ab7366c79425102992e8e1a8fc2177
-
SHA1
96275d176c5cdf091b99c86f8e6b538ad0793271
-
SHA256
06a5d68e29af4ecae705c8fdad5e18cb14197ccb90672e0df22125ddb395bd09
-
SHA512
4b4444fc71c32f6cfae46f525269f481d108984fbbdb281bcbf51ed4875e9da1c94a6c0b043a1c043f824528bd4230bfb09c90e2a97b6b0c25baf021d522436c
-
SSDEEP
24576:kE1Oio5LEextVwbADvUBrGRq64xj2DvDTWYGUn:D1L5gtVwNhGR4KDvDTN
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 59ab7366c79425102992e8e1a8fc2177
Files
-
59ab7366c79425102992e8e1a8fc2177.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 1.9MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 932KB - Virtual size: 936KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE