Behavioral task
behavioral1
Sample
7045a5a9f78d05733e458ea29f1e69b2.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
7045a5a9f78d05733e458ea29f1e69b2.exe
Resource
win10v2004-20231215-en
General
-
Target
7045a5a9f78d05733e458ea29f1e69b2
-
Size
302KB
-
MD5
7045a5a9f78d05733e458ea29f1e69b2
-
SHA1
9ccf0298cf339dae2b05af476750247e12dbd4a9
-
SHA256
075c190257b677d7c7cd505de36596ee1cc05dfead2d80cb51f9f17c58f33107
-
SHA512
e8c4c2e97b0f5fed9aa5f60aa5ee1458d21627ab2cbf5030e733599e03b52c527230d7370126ae4d44d89bef41c2b4c6622e077be7f9e6e85f9c4acdc3473a8b
-
SSDEEP
6144:NWyUoJJ2ApKoqjEPK40CA/KTbiRp7X8CgtmQ:QyUloqjmP0CAyTmRp4COm
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7045a5a9f78d05733e458ea29f1e69b2
Files
-
7045a5a9f78d05733e458ea29f1e69b2.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 588KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 195KB - Virtual size: 196KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 107KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE