Behavioral task
behavioral1
Sample
1139fe33fa2d9ad1d68c648441a5f800N.exe
Resource
win7-20240729-en
General
-
Target
1139fe33fa2d9ad1d68c648441a5f800N.exe
-
Size
686KB
-
MD5
1139fe33fa2d9ad1d68c648441a5f800
-
SHA1
ef9683712b59406fee8e84a1bf32be75a27c093c
-
SHA256
2c4cf93b2eaaca2bf07fddf8ee7f42b3674d14ab394bb6caa0379beb5b3a559b
-
SHA512
d8d9c2ab7a8d36f426e0ad74b5be34210cccf574d580f98827cd6d41151b0dd2a61587b2f035ac6b6a20433aa4d8934fff274094a5d432b90948f21107fb8596
-
SSDEEP
12288:gTpucdKwF0eVNrDsQoo9vXioGv7/ycZKrLZR/coNLgd0cf:gZMwl1YQnvXFqyLLzFLW0cf
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1139fe33fa2d9ad1d68c648441a5f800N.exe
Files
-
1139fe33fa2d9ad1d68c648441a5f800N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 648KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 556KB - Virtual size: 556KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 43KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rmnet Size: 86KB - Virtual size: 88KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE