Behavioral task
behavioral1
Sample
ca5e369cbd91adcc35c36669b108a438.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ca5e369cbd91adcc35c36669b108a438.exe
Resource
win10v2004-20240226-en
General
-
Target
ca5e369cbd91adcc35c36669b108a438
-
Size
1.3MB
-
MD5
ca5e369cbd91adcc35c36669b108a438
-
SHA1
698daee3e1dd44ee4c12bb816ca837c4cb37652a
-
SHA256
df324d2a14452d382033d15b605eb17fac5483e5b524ce0b7513af178e5de0a2
-
SHA512
b4f64b616c7b2e9ce0cbacb86344a1436b2b26b2302d8c53db6e7cb8faffecfedb7e2155de471d46e00f32dc1ebb6462df64318d625dc622c31cbc4978794833
-
SSDEEP
24576:Q/TKoIAtU1jsLbIaRILeX6DPrOzKwd16meLCg3/5oODQjvG:xAtmjsLkiX6rrEBr6me/5o8Q
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ca5e369cbd91adcc35c36669b108a438
Files
-
ca5e369cbd91adcc35c36669b108a438.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 3.2MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 136KB - Virtual size: 136KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE