Behavioral task
behavioral1
Sample
d5b42093c69d86c66d7baad5066b5595.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
d5b42093c69d86c66d7baad5066b5595.exe
Resource
win10v2004-20240226-en
General
-
Target
d5b42093c69d86c66d7baad5066b5595
-
Size
1.3MB
-
MD5
d5b42093c69d86c66d7baad5066b5595
-
SHA1
995f17124ff3c72c3b0cb22d001716c60d3d2dd6
-
SHA256
1d77db14ca9c68446df144067175fe0d9648d8a930c7da2d1d1c30a3f283ab5b
-
SHA512
65ca8628dddcc64d055c6aa9ca6742541bd9c80aee3896c87e724820345346b36be12da511024207c5511576e886b9e9049e361fc1b9026cb5423d13cad8db7c
-
SSDEEP
24576:je2k7Nq/M1ScYZ66AUX1b+j9RmLQyf4iJxlLQyk6gqBK0levG:jBkZq/qSrZ3z45RmLbXJDQyk6gK
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d5b42093c69d86c66d7baad5066b5595
Files
-
d5b42093c69d86c66d7baad5066b5595.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 3.2MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 136KB - Virtual size: 136KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE