Behavioral task
behavioral1
Sample
2186f3139a1fffe9b0ebd3bd485b4bd10153b418b5dfe5b601e9bddbbf032bb7.exe
Resource
win7-20240705-en
General
-
Target
2186f3139a1fffe9b0ebd3bd485b4bd10153b418b5dfe5b601e9bddbbf032bb7
-
Size
134KB
-
MD5
2fccee4d55fe55c0be3cd6cbfb87ce35
-
SHA1
be64c0709ab6d5d4ae25724ebb73089a024f2392
-
SHA256
2186f3139a1fffe9b0ebd3bd485b4bd10153b418b5dfe5b601e9bddbbf032bb7
-
SHA512
9c17367be363b9451300ea273e2c722a2f4b9a6d36097d66fbd7e8a59048e3ef090a988ec6ceef56dab24f6b40bae21ce88921f9c38cc211be438d843b44661d
-
SSDEEP
1536:V7Zf/FAxTWoJJZENTBWv36fLoTmXadjUSbcDemTPAZk+cLtdNlb9PfESDOayxaJe:fny1tEevOLo6W2QZwKS7c
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2186f3139a1fffe9b0ebd3bd485b4bd10153b418b5dfe5b601e9bddbbf032bb7
Files
-
2186f3139a1fffe9b0ebd3bd485b4bd10153b418b5dfe5b601e9bddbbf032bb7.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE