Behavioral task
behavioral1
Sample
bdb7781910959c45c272a75a6a24cdfa.exe
Resource
win7-20240221-en
General
-
Target
bdb7781910959c45c272a75a6a24cdfa
-
Size
160KB
-
MD5
bdb7781910959c45c272a75a6a24cdfa
-
SHA1
5ffec9c4affbc76824a4219fb8a462f0c8c5e67d
-
SHA256
7b99589d01ef2136f8d155467d69a9fb82cfc2f8bb6ddcb45fb7609e7026948c
-
SHA512
79cf0aec4cbace1718413b0749b5e3f0b55b22315ab954faeabb430fc7fabed35dca066d176022863e4fdd1b755fbd63df4d6700aadf55f9883e1a6376550479
-
SSDEEP
3072:cdNMTnmLO6ponNdB6y1QMLQRXJQEbNqTkK4:a8maBfFQR5QQNWb
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bdb7781910959c45c272a75a6a24cdfa
Files
-
bdb7781910959c45c272a75a6a24cdfa.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 108KB - Virtual size: 108KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 50KB - Virtual size: 52KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE