Behavioral task
behavioral1
Sample
bafe99fc5fa511703b20e5978d7b47cd.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
bafe99fc5fa511703b20e5978d7b47cd.exe
Resource
win10v2004-20231215-en
General
-
Target
bafe99fc5fa511703b20e5978d7b47cd
-
Size
1.8MB
-
MD5
bafe99fc5fa511703b20e5978d7b47cd
-
SHA1
33d78742fb95c6a668dac67398278f67aadbd0a9
-
SHA256
c6189a68a0c4ca5f13da403785b0964fdc54627216e659214c063900a6422cc9
-
SHA512
b8823b4fa61ebad9a07f3466bc428ded5f9ac5d83d6a2f704a461fa792b5b0ce5a5114c8ce8530225fe5e56271da3e5cb8d9d34ea7adf8cedfe3a29d36691d6e
-
SSDEEP
24576:S6pQPxQ2JyP2r5mJV91xM7RpbwgIvs7NxqdW:SCqm2Jpr0nNM7Dus7NxOW
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bafe99fc5fa511703b20e5978d7b47cd
Files
-
bafe99fc5fa511703b20e5978d7b47cd.exe windows:4 windows x64 arch:x64
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 616KB - Virtual size: 620KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE