Behavioral task
behavioral1
Sample
daa7df958992820801a3a217da791e30N.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
daa7df958992820801a3a217da791e30N.exe
Resource
win10v2004-20240802-en
General
-
Target
daa7df958992820801a3a217da791e30N.exe
-
Size
74KB
-
MD5
daa7df958992820801a3a217da791e30
-
SHA1
77c0b113b50a2cb1e56d95c3265c276819ea50df
-
SHA256
2eb595b0885558d951cdcf5963e932bd02ad05e64204b4324bfc12db5bb149fc
-
SHA512
97ce73cc1ffd8903a16b5c402a431144a0172841271e5766cb86f0e9f826c8f103e4c34cdc1f754ce85f68d6397e2d9a720bd583bee44425645c0f3ef320d3d2
-
SSDEEP
768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcI9dKBT37CPKKdJJ1EXBwzE:V7Zf/FAxTWoJJ7TwTW7JJ7T/Qx
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource daa7df958992820801a3a217da791e30N.exe
Files
-
daa7df958992820801a3a217da791e30N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE