Behavioral task
behavioral1
Sample
a52a0dfe04dac51b01d40748442cab50N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
a52a0dfe04dac51b01d40748442cab50N.exe
Resource
win10v2004-20240802-en
General
-
Target
a52a0dfe04dac51b01d40748442cab50N.exe
-
Size
48KB
-
MD5
a52a0dfe04dac51b01d40748442cab50
-
SHA1
cfa761d06c99f141a085a1af4a9d8d837c1c122d
-
SHA256
895fdb8c27e28824aa33125350b5f1c2c8ad4c2c71a39ae71d6e574281221919
-
SHA512
8bdc49229027a114751034c815ee67be9c86dbca26d374cd8884f3bb01473e74a52a7fddb3b26093a6787e60eb65eab65a838b902484b8974a7a0998b88e8673
-
SSDEEP
1536:yoMuwospyudrnMjVhDIP4ka3q3oaQOF4nouy8Bk:DMcsEknMLDIFEOKoutBk
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a52a0dfe04dac51b01d40748442cab50N.exe
Files
-
a52a0dfe04dac51b01d40748442cab50N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 248KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE