Behavioral task
behavioral1
Sample
992ab269b556c35c6fc844420cbd6ead.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
992ab269b556c35c6fc844420cbd6ead.exe
Resource
win10v2004-20231222-en
General
-
Target
992ab269b556c35c6fc844420cbd6ead
-
Size
3.2MB
-
MD5
992ab269b556c35c6fc844420cbd6ead
-
SHA1
2403b6038256b459fd20ed12c31d9925312e5c1e
-
SHA256
e03d520381601ce99064847fe5090657d37245df579bdfa024bcbb3bb5cb0da1
-
SHA512
d3868d863ff56e2e6b36e73114482dd1df81847edeeb120377184dfcc3fa26f20e4f187391b4cfd2629a87b49a96bb6eaca4ab9ae4c3487d3a88f96b05a0fdaa
-
SSDEEP
98304:HhQNvIRAWTcakchS87ccakcPuq6sUKoa06cakchS87ccakcO:HhSzEdlhS87cdl+sl9dlhS87cdlO
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 992ab269b556c35c6fc844420cbd6ead
Files
-
992ab269b556c35c6fc844420cbd6ead.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 1.9MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 500KB - Virtual size: 504KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE