Behavioral task
behavioral1
Sample
81a3d20f9246600aca6e4c7e855c2be0N.exe
Resource
win7-20240708-en
General
-
Target
81a3d20f9246600aca6e4c7e855c2be0N.exe
-
Size
126KB
-
MD5
81a3d20f9246600aca6e4c7e855c2be0
-
SHA1
37aa5586dc2efaa3828fdfaa7dbca10d2b269aff
-
SHA256
73e178541a97ebdda9f03f71054e1e20388f6b199544068bdb40007fb20db6db
-
SHA512
85976353181590c1113e7c56db5a4cc626b7ce4951663bb0164b2ffba543708df79e7b4ec6c9fd1ae19f00d968ebbbac30adc9193c9200f5f6b797fd0d0502f7
-
SSDEEP
1536:V7Zf/FAxTWoJJB7LDqnJJNLJNRKmYzc+yk2F:fny1tDqnLKTc+yk2F
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 81a3d20f9246600aca6e4c7e855c2be0N.exe
Files
-
81a3d20f9246600aca6e4c7e855c2be0N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE