Behavioral task
behavioral1
Sample
bac29aa4ecf6ec32955f9ae2fba3b630N.exe
Resource
win7-20240903-en
General
-
Target
bac29aa4ecf6ec32955f9ae2fba3b630N.exe
-
Size
227KB
-
MD5
bac29aa4ecf6ec32955f9ae2fba3b630
-
SHA1
65619aba313efffc556643860ca48053c1932608
-
SHA256
e108775a9c6c2513fc5ad4caa68d657857ce3dd32c446eceac97fa8e7cf37df7
-
SHA512
8a569ede353cabf2332ebd88a8c8375d49597a113fe5ddbd68911c00f94ae563d84b8cd59a6809751bd9423c65e072d570c0e962ea33cf9640b8b0988a57368e
-
SSDEEP
6144:jvNzUzbF68H3S8+b6uyptXIi9u/mp8saZHRD4v4M84Z9YkF/GeHNHyORQdcIKtd:jvw68XS8+d8HamysaZHRD44M3ZzF/Ge/
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bac29aa4ecf6ec32955f9ae2fba3b630N.exe
Files
-
bac29aa4ecf6ec32955f9ae2fba3b630N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 15KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 23KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ