Static task
static1
Behavioral task
behavioral1
Sample
028188b96ee89bdaa300f27bc079567fdc8a182fed3217df30df10bc0027a7bf.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
028188b96ee89bdaa300f27bc079567fdc8a182fed3217df30df10bc0027a7bf.exe
Resource
win10v2004-20240508-en
General
-
Target
028188b96ee89bdaa300f27bc079567fdc8a182fed3217df30df10bc0027a7bf
-
Size
118KB
-
MD5
544487f550b3c95f3a957439be2fcbb2
-
SHA1
d1741aca0a0060210d74f512217009b25bb22d4e
-
SHA256
028188b96ee89bdaa300f27bc079567fdc8a182fed3217df30df10bc0027a7bf
-
SHA512
2619957823cb2b0f45ac1e72d323193c4dec2d59ce9e02f5659cbfba5ba872427d3cb74b05bdc74004da653178675bc563be433642e0df67a6bdf308b7cb0049
-
SSDEEP
3072:/OjWuyt0ZsqsXOKofHfHTXQLzgvnzHPowYbvrjD/L7QPbg/Dr0T3rnXLHf7zjPPo:/Is9OKofHfHTXQLzgvnzHPowYbvrjD/h
Malware Config
Signatures
-
UPX dump on OEP (original entry point) 1 IoCs
Processes:
resource yara_rule sample UPX -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 028188b96ee89bdaa300f27bc079567fdc8a182fed3217df30df10bc0027a7bf
Files
-
028188b96ee89bdaa300f27bc079567fdc8a182fed3217df30df10bc0027a7bf.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
2w70ulkk Size: 76KB - Virtual size: 76KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
21l6wges Size: 39KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
2190zykw Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE