Behavioral task
behavioral1
Sample
747200c6248d0896fb42b86b88d55d1f.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
747200c6248d0896fb42b86b88d55d1f.exe
Resource
win10v2004-20231222-en
General
-
Target
747200c6248d0896fb42b86b88d55d1f
-
Size
68KB
-
MD5
747200c6248d0896fb42b86b88d55d1f
-
SHA1
269000a7aee71385c17293cf48e8b50852184364
-
SHA256
e70d5bd79620154f6a6902781b9e76e185b458ca68e4b166b55f6031f946ee94
-
SHA512
26854882642be1de4a5bcde0bf10a22abb4b9bfa44b2bc7854bcf7a0b9d9fe9e2b1ed6605d3e5a87fc7427dcbedf51b92fe98f324b7b1f820a18ee71f8ab560e
-
SSDEEP
768:1TtOhMsDGlrCaxof1AQCOhMszSUltuMtC5baSIb2RMUldKMNt:htOhMOG95+mOhMTUlib9I2+YX
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 747200c6248d0896fb42b86b88d55d1f
Files
-
747200c6248d0896fb42b86b88d55d1f.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 36KB - Virtual size: 36KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE