Behavioral task
behavioral1
Sample
SyncInfrastructure.exe
Resource
win11-20240709-en
General
-
Target
SyncInfrastructure.exe
-
Size
1.3MB
-
MD5
5170df27b1aca07eed9ae0d8a2522af8
-
SHA1
afbaa8a2c2f14752cf54fb79de447e576744a2f0
-
SHA256
86d82a797944a04f68c4c05c9debde1172dbeaba94230f692eb27f8f8aa17add
-
SHA512
f622b5f302799511c5f2ff842d3f0b7493b2c9e8475cd0d73b215d3719704551302a772dfec2bea995bc31d7e5acf304decfd30371a6c7a7dbae96f2101f3ae1
-
SSDEEP
24576:wNZ20mmaNUnnaci5+002X/moF8YSmld00EhMtJAGOi4vgF0m:wNY0ha+hiP02PmoFWXMtJki44F
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SyncInfrastructure.exe
Files
-
SyncInfrastructure.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
UPX0 Size: - Virtual size: 3.6MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE