Static task
static1
Behavioral task
behavioral1
Sample
28f5b31f72184970e3f9ce5b84b8cf38f263b5d09a3b245f2577d1822c57501a.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
28f5b31f72184970e3f9ce5b84b8cf38f263b5d09a3b245f2577d1822c57501a.exe
Resource
win10v2004-20240426-en
General
-
Target
28f5b31f72184970e3f9ce5b84b8cf38f263b5d09a3b245f2577d1822c57501a
-
Size
41KB
-
MD5
53baccd3b9175cdd2689bff22c925497
-
SHA1
810a9fe18ea779c11f0908ea30307f301caf48db
-
SHA256
28f5b31f72184970e3f9ce5b84b8cf38f263b5d09a3b245f2577d1822c57501a
-
SHA512
ca82b7186a45fb5eeace6aebb9b2536cd56f54063d7298ab764f2858a8dc18af9e8fd23e481e94c2dc5c7e33ff7f31cbacf5658bc4a28f6f9c8e13a13fd801b9
-
SSDEEP
192:a8pdXiTbBZu1Ld67lsrj6B3SEYZ91pNKgqTB+Mc5AZle32LWv5T65:zdXiHBZ067av6pSBpcX0Si2qv96
Malware Config
Signatures
-
UPX dump on OEP (original entry point) 1 IoCs
resource yara_rule sample UPX -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 28f5b31f72184970e3f9ce5b84b8cf38f263b5d09a3b245f2577d1822c57501a
Files
-
28f5b31f72184970e3f9ce5b84b8cf38f263b5d09a3b245f2577d1822c57501a.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
2350ildy Size: - Virtual size: 76KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
2z47zyac Size: 39KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
24x4kovl Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE