Behavioral task
behavioral1
Sample
8b8d9ecbd8a1312671b4e3b7d0ab6e7c.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
8b8d9ecbd8a1312671b4e3b7d0ab6e7c.exe
Resource
win10v2004-20231215-en
General
-
Target
8b8d9ecbd8a1312671b4e3b7d0ab6e7c
-
Size
106KB
-
MD5
8b8d9ecbd8a1312671b4e3b7d0ab6e7c
-
SHA1
37fbf79652a1492f8232d564f70e9d4ad1ad9abf
-
SHA256
ea25aae02e9565a9622d03a5fdf38b3c458e8182299716245a0493a2885dc10d
-
SHA512
edd5b035340423d23ceaa3b8c9e3108f88cbd8c43839f4c7bee47c2ec73bbde310c921edf06176fe649bad66404ebb28399350e1f89f53dd29843b06b11d3df7
-
SSDEEP
1536:gjE6S650D4h5IYNVWAP56HmSpEPF75gHFdT+O4ejEkyOmQNV145teMZJCIHfb:eEQ5jh5IWAoAEPFiH3+t9wHq51JCIHz
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8b8d9ecbd8a1312671b4e3b7d0ab6e7c
Files
-
8b8d9ecbd8a1312671b4e3b7d0ab6e7c.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 908KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 153KB - Virtual size: 156KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 9KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE