General
-
Target
beta_test.exe
-
Size
428KB
-
MD5
f881b47cd1c126bd8160992b5c30b6ac
-
SHA1
d9318d426e551c9c29d0e186638f5437f3054172
-
SHA256
ab4687b09ab693bf7acf68231b449b1e8ca819d1f2eeee436bab245491b746db
-
SHA512
ecb14ca37da10d2bb33a1c247234f34190deaee733191f7fd5a65f82e8ad81a957f0e657bc06852c91dd66c377b09f3f0100eac06775c368561f18e3316167c5
-
SSDEEP
6144:8amt7jvQD60i+PqcCnvYJpMOrwdZl3CGAVVBuysg56VttgNQ5qV59DUjk7:mjnfH1vYdrgZIRBnoMNfVHUS
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource beta_test.exe
Files
-
beta_test.exe.exe windows:6 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
UPX0 Size: - Virtual size: 600KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 425KB - Virtual size: 428KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE