Behavioral task
behavioral1
Sample
e40c05d443df28dd075f56df41b23b446c7f8f91f436554688bdfb4af4dd7a35.exe
Resource
win7-20240705-en
General
-
Target
e40c05d443df28dd075f56df41b23b446c7f8f91f436554688bdfb4af4dd7a35
-
Size
90KB
-
MD5
26099f65f15f145cbc1bb1a90606024d
-
SHA1
a25b0c430263849e5088d255c918857c394866c6
-
SHA256
e40c05d443df28dd075f56df41b23b446c7f8f91f436554688bdfb4af4dd7a35
-
SHA512
57d18b8108e12f4deb874a28446ad305d8149fa0d33b006f0203a24e0c7cd79918fe0d4eda6318af13f2c4bd1737f2b9e67509d7ecc6f0148c52f46324644705
-
SSDEEP
1536:V7Zf/FAxTWoJJ7T8ov61XxvEci9vQG9xmX/D562aqQCRg9LKgQLVfDay4RNZTdc4:fny1IO9+s
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e40c05d443df28dd075f56df41b23b446c7f8f91f436554688bdfb4af4dd7a35
Files
-
e40c05d443df28dd075f56df41b23b446c7f8f91f436554688bdfb4af4dd7a35.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE