Static task
static1
Behavioral task
behavioral1
Sample
4a1ce34aff39f859ef171fef7793f839d7912aa3c3f44ac3387c6a63a91d5241.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4a1ce34aff39f859ef171fef7793f839d7912aa3c3f44ac3387c6a63a91d5241.exe
Resource
win10v2004-20240412-en
General
-
Target
4a1ce34aff39f859ef171fef7793f839d7912aa3c3f44ac3387c6a63a91d5241
-
Size
41KB
-
MD5
1d2d6978cfa48804d8d79a33d3872fdc
-
SHA1
c52549dd1c40614ad8c9989c8f04023b73ba7861
-
SHA256
4a1ce34aff39f859ef171fef7793f839d7912aa3c3f44ac3387c6a63a91d5241
-
SHA512
70a51a19628da9bfdc16f757322d3d829919d724fecac8cbb72c6d4b65307f4c1ab246e256e9328c65610e1ec1f642638d77837ab9f17efcd9e0bf2260efd2b1
-
SSDEEP
768:NeMc5VwWt1jDkbXdnTOyQxHFO+IxX2P5LIbbcPYir2lAqcdF0i09sy:Nq5VwWDjDkdTRqHFOn8tIbbeYiuZIFSl
Malware Config
Signatures
-
UPX dump on OEP (original entry point) 1 IoCs
resource yara_rule sample UPX -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4a1ce34aff39f859ef171fef7793f839d7912aa3c3f44ac3387c6a63a91d5241
Files
-
4a1ce34aff39f859ef171fef7793f839d7912aa3c3f44ac3387c6a63a91d5241.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
4769syfo Size: - Virtual size: 76KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
4601qeqj Size: 39KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
4654iheu Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE