Behavioral task
behavioral1
Sample
5a7a004dc9262c6290087136cf1d8b30N.exe
Resource
win7-20240705-en
General
-
Target
5a7a004dc9262c6290087136cf1d8b30N.exe
-
Size
77KB
-
MD5
5a7a004dc9262c6290087136cf1d8b30
-
SHA1
16e13f06988a0317100085d57bd0d87ca0d4bc4a
-
SHA256
dbad0cf87a549b4edf2b16eadfe57dfb1c33e125a9cee6bee113f30016f979e4
-
SHA512
d44feda7b981366a3e630fef9412fef3ddd7cc5b82dab0ce6d3da0980bab4eab5b2960ecc72f20900cb290aa9e59f0196b328fbf5479844a0d8d57518a3f6045
-
SSDEEP
1536:a7ZyqaFAxTWbJJB7LDKTW7JJB7LDpDL98Q:enay2tDptDpDB8Q
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5a7a004dc9262c6290087136cf1d8b30N.exe
Files
-
5a7a004dc9262c6290087136cf1d8b30N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE