Behavioral task
behavioral1
Sample
3ac3fb8d64af7e7f217413c76b21ba50N.exe
Resource
win7-20240903-en
General
-
Target
3ac3fb8d64af7e7f217413c76b21ba50N.exe
-
Size
634KB
-
MD5
3ac3fb8d64af7e7f217413c76b21ba50
-
SHA1
26a7c3d57b6c7905dac0206fc61d17a78e1b4cc1
-
SHA256
0c8279c4e3836381db87cddab0ced3595673284d94668efb4803693c84b6968c
-
SHA512
cca0d51aba344f01bf40dc6897c36f8681b102eedcc7bb957e39037bdbcfe7b6082207e5e49b7c9123f1779a7b1f6fed4431bf560e3f32f845bfe6a3d99e276f
-
SSDEEP
12288:yeFDnDd9qW1yp//fEDti9C28IQ9K2QkXm:yaN1i/8Yh8IQYDkW
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3ac3fb8d64af7e7f217413c76b21ba50N.exe
Files
-
3ac3fb8d64af7e7f217413c76b21ba50N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE