Behavioral task
behavioral1
Sample
85d377c270cd00af9150303d0e1d3589.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
85d377c270cd00af9150303d0e1d3589.exe
Resource
win10v2004-20231215-en
General
-
Target
85d377c270cd00af9150303d0e1d3589
-
Size
1.6MB
-
MD5
85d377c270cd00af9150303d0e1d3589
-
SHA1
a062371bce7aa1020074262fae7080707e067d37
-
SHA256
387459d7b8c9252d6730c1664a83ddd7b582667cea4562a21ba576d4754bebf8
-
SHA512
b4758b810fe54dcc21905cba4c6ef8b8fc84bcd7641842b2f912415bfe29ce5504b33c81bcfdb35ac1db9bc6677a66ae4320e7a32187fc2423cbc9ea4ba06443
-
SSDEEP
49152:t2fR747TrgcakLz0Hh/0wQW5ZfD/c5cakLz0O:tO747TccakcHh/0wNZrecakcO
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 85d377c270cd00af9150303d0e1d3589
Files
-
85d377c270cd00af9150303d0e1d3589.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 1.9MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 500KB - Virtual size: 504KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE