Behavioral task
behavioral1
Sample
b32d9d337d65249dfa59ffdf105a531e.exe
Resource
win7-20240220-en
General
-
Target
b32d9d337d65249dfa59ffdf105a531e.bin
-
Size
212KB
-
MD5
b32d9d337d65249dfa59ffdf105a531e
-
SHA1
f0143f843ea3df8be7894b0351672ea86ca974d0
-
SHA256
9639cb429e8ea6111a8a38cca3367f57c97153af48f9dce9bf2ef8765218aa50
-
SHA512
dceba7eb8bc9fe2104b7b25865bc5ed6563548fb02649a0d4e75cc0001d5f275f9d883d67964523d52e60e04109d8a915f0945bdb98de33a4b72221283467969
-
SSDEEP
3072:DJacj8v7wQ+ZGx7w8wjjP8I1IU8RjrzzvUWAOZjfKdLOYP:DJPgv7wJZ87wBjYI1IUwrIOZyxP
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b32d9d337d65249dfa59ffdf105a531e.bin
Files
-
b32d9d337d65249dfa59ffdf105a531e.bin.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 416KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 184KB - Virtual size: 184KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE