Behavioral task
behavioral1
Sample
86abf0b3f8c705ac2c1ed04ccf1d3928.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
86abf0b3f8c705ac2c1ed04ccf1d3928.exe
Resource
win10v2004-20231222-en
General
-
Target
86abf0b3f8c705ac2c1ed04ccf1d3928
-
Size
133KB
-
MD5
86abf0b3f8c705ac2c1ed04ccf1d3928
-
SHA1
9a8182868cc6b58966453a3953430b80f955d624
-
SHA256
8ee10a035f1eb64d10a96c1f582705b167cb32f86ca84ec6624eb49d1049b5e2
-
SHA512
922a4f69a1865ffde252850e8d815d4e6a62569d9814d26083152cc54f8899c5acc316f20885b37544068fbb97a1224cd46a38ae284abbb7f80287372ee186bb
-
SSDEEP
3072:kG2EDfhI4s/tYthPF1pTStZhtWeSHpjL1R63m75Q:koDC4s/4Nx6h4lJjLGk5Q
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 86abf0b3f8c705ac2c1ed04ccf1d3928
Files
-
86abf0b3f8c705ac2c1ed04ccf1d3928.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 396KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 131KB - Virtual size: 132KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE