Behavioral task
behavioral1
Sample
46832986780d202bfbb134abf4ef49ef49276657135fb6ae9edeadbc2834d491.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
46832986780d202bfbb134abf4ef49ef49276657135fb6ae9edeadbc2834d491.exe
Resource
win10v2004-20240709-en
General
-
Target
46832986780d202bfbb134abf4ef49ef49276657135fb6ae9edeadbc2834d491
-
Size
2.5MB
-
MD5
6e7e9ed8f224cfe8f2817b36040c49b3
-
SHA1
7d915170113a18f33935887db21672b7e89844a3
-
SHA256
46832986780d202bfbb134abf4ef49ef49276657135fb6ae9edeadbc2834d491
-
SHA512
edb4fdae22bad82653271b5eaef1d5d1c39da513a1d0e33c54fae7a4ce503d3f92694857523393165142a6aed10af5a5556cba132c43dc4059b3f5e0a74a541c
-
SSDEEP
49152:I4zTMgLMgEp8vZE3EJ9nRhhwUWbm00dQ3NwkBz/BFM7k:ZnhJrRoXbmM3NlzM7k
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 46832986780d202bfbb134abf4ef49ef49276657135fb6ae9edeadbc2834d491
Files
-
46832986780d202bfbb134abf4ef49ef49276657135fb6ae9edeadbc2834d491.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 2.7MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 2.2MB - Virtual size: 2.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 281KB - Virtual size: 284KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE