Behavioral task
behavioral1
Sample
b4f61e3de811f03c24f6c5692b5d05c6.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b4f61e3de811f03c24f6c5692b5d05c6.exe
Resource
win10v2004-20240226-en
General
-
Target
b4f61e3de811f03c24f6c5692b5d05c6
-
Size
851KB
-
MD5
b4f61e3de811f03c24f6c5692b5d05c6
-
SHA1
4c45496dda2cfd9814f6895ccfad2e74a78e5ceb
-
SHA256
551f823bf948a7079d24d0cbaffb760e6c305653a748fd00f5d13f2809c3af97
-
SHA512
63ccd910e52f1f3450f31f951e0629a6e0f9005f2355637fd5985a8f35135b2067e15cb93780a2ae61d377cee985a2267c458f821e6385ea7a739d773014143a
-
SSDEEP
24576:eEQSAqXug+7XmF9j2rAiLOCmNvEoRDtehmPgzLfcr:EqXxOWF9EtqXNvDZteh9z6
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b4f61e3de811f03c24f6c5692b5d05c6
Files
-
b4f61e3de811f03c24f6c5692b5d05c6.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 5.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 833KB - Virtual size: 836KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 17KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE