Behavioral task
behavioral1
Sample
9297de7a7bf37423aa607881af6b873f4d1da115c0336ded00c4a45423991402.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
9297de7a7bf37423aa607881af6b873f4d1da115c0336ded00c4a45423991402.exe
Resource
win10v2004-20240508-en
General
-
Target
9297de7a7bf37423aa607881af6b873f4d1da115c0336ded00c4a45423991402
-
Size
82KB
-
MD5
14351085829125fc0879ab290ce16fe1
-
SHA1
a1534a0a4153c763d75307a4ddde816b1eb58859
-
SHA256
9297de7a7bf37423aa607881af6b873f4d1da115c0336ded00c4a45423991402
-
SHA512
a7fb5fc1d85e4067afa73288e176b8fd4d869445948ed8b3f3a14bb07e1000542af9773dfa05d268830138be3566ce0a0a96767511b97f999837027fa3a557cc
-
SSDEEP
1536:y4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mhNmtUMM1ROrXX/wBbzG+0Rh:y4X6NSyfnpijeYEoIcq4mQqMMzsf8vtg
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 9297de7a7bf37423aa607881af6b873f4d1da115c0336ded00c4a45423991402
Files
-
9297de7a7bf37423aa607881af6b873f4d1da115c0336ded00c4a45423991402.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: - Virtual size: 336KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 52KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE