Behavioral task
behavioral1
Sample
f3bbe7a7094f8d1d8ea39b2ebcf654c0N.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
f3bbe7a7094f8d1d8ea39b2ebcf654c0N.exe
Resource
win10v2004-20240802-en
General
-
Target
f3bbe7a7094f8d1d8ea39b2ebcf654c0N.exe
-
Size
60KB
-
MD5
f3bbe7a7094f8d1d8ea39b2ebcf654c0
-
SHA1
fe40bf2b91b45df9f4099c8ef7f14495ac4caeed
-
SHA256
3f49add049f5c04c2dc78d6203e036eb0a4fc91a6c51b53deab3089fbc710843
-
SHA512
da5c91291eeb053af34716e88ccf611808a724ae1091eaabb1d5cb4fcc32832cba66d442297688e0d451d20af8d0942ed50f4118b244c7a8adac36be807564ab
-
SSDEEP
768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBApwp133EskmKh:V7Zf/FAxTWoJJZENTBAOIfmKJfmKkGf
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f3bbe7a7094f8d1d8ea39b2ebcf654c0N.exe
Files
-
f3bbe7a7094f8d1d8ea39b2ebcf654c0N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE