Behavioral task
behavioral1
Sample
46a8b94f107229ccdf5b5f1f32103600N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
46a8b94f107229ccdf5b5f1f32103600N.exe
Resource
win10v2004-20240802-en
General
-
Target
46a8b94f107229ccdf5b5f1f32103600N.exe
-
Size
157KB
-
MD5
46a8b94f107229ccdf5b5f1f32103600
-
SHA1
33659a45f731c9bf4c5f3320f3c3f2d3dec79557
-
SHA256
99b794a6bc23d9525d486c5620e63ad51728156596ae12ebd1ae95aed2dcde45
-
SHA512
a50b892ee2ad90994b6b30888e04d80126613f697d2ea5c799aaecb95c4f6b9115a63c2a31a45fbddfa0a94c3852b0af9d57ff729131000a84cc09179733110d
-
SSDEEP
3072:enaypQSo7ZBXxXgOT2IOT2KnaypQSo7ZBXxXgOT2IOT2k:wHpQSovhQOT2IOT2EHpQSovhQOT2IOTZ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 46a8b94f107229ccdf5b5f1f32103600N.exe
Files
-
46a8b94f107229ccdf5b5f1f32103600N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE