Behavioral task
behavioral1
Sample
39089ff5e8d99e7cc6a49fd6d876abf0N.exe
Resource
win7-20240705-en
General
-
Target
39089ff5e8d99e7cc6a49fd6d876abf0N.exe
-
Size
88KB
-
MD5
39089ff5e8d99e7cc6a49fd6d876abf0
-
SHA1
cb9861fdbc73ed7e1dca8689279fbc04a05f6e54
-
SHA256
3fb7cae5716fb54721e85271db58a8c5ce00a36d5cb2f14728caf43b66b9506f
-
SHA512
8b8713e39f34428423b4df026c256b5d7d72aecd58bcaa1a1ce1c3002b536f1b8d96a507a8b7eb7e3b3bc50db3e138834b5baf7134ddc978cc7b6ba1b0f27775
-
SSDEEP
768:DKPPQYaN67hQCGVX3EHvazXwLlqiSoTjnekrjsCTOWnFc6nWWExiBA/A3GTkHvtI:DuhOzXmchkECmQAmtI
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 39089ff5e8d99e7cc6a49fd6d876abf0N.exe
Files
-
39089ff5e8d99e7cc6a49fd6d876abf0N.exe.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ap0x Size: 1024B - Virtual size: 743B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE