Behavioral task
behavioral1
Sample
52101e9925fd861051bb21e780799a30N.exe
Resource
win7-20240704-en
General
-
Target
52101e9925fd861051bb21e780799a30N
-
Size
2.9MB
-
MD5
52101e9925fd861051bb21e780799a30
-
SHA1
43c554b756cefec1eec1072166d9d41de2b03ff3
-
SHA256
5c9d4379c98d201f16efc7c192ea9c780a5ac6ebe9bdbf0fb7f96c2cdde80c0f
-
SHA512
bef649de7bfa41844a3dadd6e7ca800aa51342718780fbbf0f67b0a811668e28929e2b96897202967fbe25fe539c53f97e9fc996a81ba2578e471ee11e0482a2
-
SSDEEP
49152:R6XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXT:y
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 52101e9925fd861051bb21e780799a30N
Files
-
52101e9925fd861051bb21e780799a30N.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 80KB - Virtual size: 92KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 65KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE