Behavioral task
behavioral1
Sample
c0c12e9b619e631f8c286ebb4bacfdb7.exe
Resource
win7-20240221-en
General
-
Target
c0c12e9b619e631f8c286ebb4bacfdb7
-
Size
136KB
-
MD5
c0c12e9b619e631f8c286ebb4bacfdb7
-
SHA1
a0415d0993d5d28849fe7bf447a9167da3f287e6
-
SHA256
003ad5b55203a4433a4a93e674cced17966f9f3cb2d4617deb9b66caa827329b
-
SHA512
43430fa0c66daadba1710a0afe45324b961276e14bad41b98a545179d9c803476504718bfdaa96ecdaaaa1f733b57f1d118b493ee954f9df8a2a08563ec71001
-
SSDEEP
3072:9hOmTsF93UYfwC6GIoutz5yLpcgDE4JBuItR8pTvTwQ:9cm4FmowdHoS4BftapTB
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c0c12e9b619e631f8c286ebb4bacfdb7
Files
-
c0c12e9b619e631f8c286ebb4bacfdb7.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 104KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 40KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.code Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE