C:\Users\vanha\Documents\54a4d5a3\ui\OxygenU-V2-UI\OxygenURewrite\obj\Release\OxygenU.pdb
Static task
static1
Behavioral task
behavioral1
Sample
oxygen_u/OxygenU.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
oxygen_u/OxygenU.exe
Resource
win10v2004-20240221-en
General
-
Target
oxygen_u.zip
-
Size
1.9MB
-
MD5
82879670dfe8994b54d76d499335a92e
-
SHA1
b4713f9223044746be5ce13d3e020d24535998c4
-
SHA256
2a572f51e2c64621f08d4a9253eb8d0efa2c44a3cc3d34254fed659c700a6606
-
SHA512
8ae7cb4033a18bfbbafbc3b4a090d9e44092627187593ec3964480652206c9dd7806f579443c61385dd8c9c4fec22c7a59219f17c535eb3181ce78bcac2275fb
-
SSDEEP
49152:i0QiVnTom/ugvnDPtJov6dMtB2qnFdA0zA/P7y:i0xMcusDPtJov6qB2qnFmA87y
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/oxygen_u/OxygenU.exe
Files
-
oxygen_u.zip.zip
-
oxygen_u/OxygenU.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 2.4MB - Virtual size: 2.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 153KB - Virtual size: 153KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ