Static task
static1
Behavioral task
behavioral1
Sample
cca0a316f4e8a44a64a8993c697416c726c8e3e20ccb0d7dfcce8f495ab6d508.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
cca0a316f4e8a44a64a8993c697416c726c8e3e20ccb0d7dfcce8f495ab6d508.exe
Resource
win10v2004-20240508-en
General
-
Target
cca0a316f4e8a44a64a8993c697416c726c8e3e20ccb0d7dfcce8f495ab6d508
-
Size
41KB
-
MD5
3d8610b850331d3b8de8a42831b6ba0e
-
SHA1
f13b7ab0e6218ca490178b042f4594f0a8d943b5
-
SHA256
cca0a316f4e8a44a64a8993c697416c726c8e3e20ccb0d7dfcce8f495ab6d508
-
SHA512
29b8de819df991d0e1c71ecfe466fd510f51e6d0af4953289d17e82c3c5d08e3c1588e82a69b85bdaa23f1ec2d73c191b7acb411839897f38c73c9aac959f7a5
-
SSDEEP
384:icuU5SCTDklL7rRdV0qGz9yDvVfwDTVm/IE2q95IcIUuNBdw/5A/1mwnA3J3BXRU:izUXTQjaEyVm195IcIjNQSkwy3BEP+i
Malware Config
Signatures
-
UPX dump on OEP (original entry point) 1 IoCs
resource yara_rule sample UPX -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource cca0a316f4e8a44a64a8993c697416c726c8e3e20ccb0d7dfcce8f495ab6d508
Files
-
cca0a316f4e8a44a64a8993c697416c726c8e3e20ccb0d7dfcce8f495ab6d508.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
VHqxTUpa Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IaDsgWGk Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 23KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE