Behavioral task
behavioral1
Sample
9989c7fb6389c94c1c96fe9e9f547d92.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
9989c7fb6389c94c1c96fe9e9f547d92.exe
Resource
win10v2004-20231215-en
General
-
Target
9989c7fb6389c94c1c96fe9e9f547d92
-
Size
2.7MB
-
MD5
9989c7fb6389c94c1c96fe9e9f547d92
-
SHA1
e77ec4033bd85fcc2471c8cda712eef8561591d3
-
SHA256
a69e2a74dd9d74734dda0599f427dc82b9efd09ede0f6daefd17d2d70aefdfa2
-
SHA512
19627afa04ca1d0daa3ceb133325e38d2f224b9d805891fa8ac0a41e580b668a605fd63e9e9f68484d10c6ad0c4cc225c74360143df178e1d4aa22b0437a0663
-
SSDEEP
49152:uZMx3yE+qqv71dOEkPSmrhsQEpYoXTXxw0ZkwqAU+i+d5EjoqQDvx1cp:7yE+HvRkEKSmrWJpY4hw4LqAUzW5crQ+
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 9989c7fb6389c94c1c96fe9e9f547d92
Files
-
9989c7fb6389c94c1c96fe9e9f547d92.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 3.6MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 135KB - Virtual size: 136KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE