Behavioral task
behavioral1
Sample
2f705a3b4b2efecda0d94bc0f3dffcafcffa85b4ac747f8fbb8bdabb3895db68.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
2f705a3b4b2efecda0d94bc0f3dffcafcffa85b4ac747f8fbb8bdabb3895db68.exe
Resource
win10v2004-20240802-en
General
-
Target
2f705a3b4b2efecda0d94bc0f3dffcafcffa85b4ac747f8fbb8bdabb3895db68
-
Size
45KB
-
MD5
6e352b45b5fee5bc124099b5e5a9a1f5
-
SHA1
44b2d681523b7a0d628c2e63954166f34bf2103d
-
SHA256
2f705a3b4b2efecda0d94bc0f3dffcafcffa85b4ac747f8fbb8bdabb3895db68
-
SHA512
f4db8babb4c5b40f0f1ca4e3cdf7533638681b6f04ef2a58eaeb97c57310eaf1c9446a74f10cdf630ad3c6f97f4837edba1bd59c06895b517c998b597eeb2b3b
-
SSDEEP
768:kSxam3Usjr3RT594UPS8GGCMDDxW738HbFtnbcuyD7UVOQI5nosy:kRsjd3GR2Dxy387Lnouy8VTsy
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2f705a3b4b2efecda0d94bc0f3dffcafcffa85b4ac747f8fbb8bdabb3895db68
Files
-
2f705a3b4b2efecda0d94bc0f3dffcafcffa85b4ac747f8fbb8bdabb3895db68.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
BSS Size: - Virtual size: 140KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 31KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE