Behavioral task
behavioral1
Sample
931495e2a3302f66b286cb4d0ac999f0N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
931495e2a3302f66b286cb4d0ac999f0N.exe
Resource
win10v2004-20240802-en
General
-
Target
931495e2a3302f66b286cb4d0ac999f0N.exe
-
Size
81KB
-
MD5
931495e2a3302f66b286cb4d0ac999f0
-
SHA1
fd2f2e92ac0d9d5b803b7a727c4009d4a343f709
-
SHA256
fb982fe1566a50d97cf83af9223c174e8b10520952cdc34c1070cb09e3775716
-
SHA512
f084a7a3c7e091442b88c1067eb2443e782ac61c91e562d83cebc46c3ef82394b852b57cb13230bec3f13ac0de6c865d64208e1ced46dd9c213bebbf13f9cb3b
-
SSDEEP
1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8IZT7:fnyiQSo7Zn
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 931495e2a3302f66b286cb4d0ac999f0N.exe
Files
-
931495e2a3302f66b286cb4d0ac999f0N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE