Behavioral task
behavioral1
Sample
ca55d685fdcdee4d19bfeafe68438662.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ca55d685fdcdee4d19bfeafe68438662.exe
Resource
win10v2004-20240226-en
General
-
Target
ca55d685fdcdee4d19bfeafe68438662
-
Size
133KB
-
MD5
ca55d685fdcdee4d19bfeafe68438662
-
SHA1
2b4e7ba8f21ed0f86c747ef40b72792c3c157687
-
SHA256
97e24ce1a9dfe82e9560ef31718641a66f917a2d0c176c83cc53853c4c820e33
-
SHA512
5b277b69f3df7a9ac5c8918b037fd8faeecbc008dd9be8d36d7da703fdc2e87e7dc2267f111d081548e59a95a51b112c07a14dec523bbd738229148bd8851f05
-
SSDEEP
3072:AIj7CVrEK22gzEqYgQIG3w/jEFtQC/z4DADbexE40oG2VQ:APtEK2RPYDIIFFtQUsADSqcVQ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ca55d685fdcdee4d19bfeafe68438662
Files
-
ca55d685fdcdee4d19bfeafe68438662.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 396KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 131KB - Virtual size: 132KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE