Behavioral task
behavioral1
Sample
56a7cf3d6215ca2d68e4e83e15ce8b44ddd3495a99cf6a079226572109e77d3c.exe
Resource
win7-20240903-en
General
-
Target
56a7cf3d6215ca2d68e4e83e15ce8b44ddd3495a99cf6a079226572109e77d3c
-
Size
2.5MB
-
MD5
88c648a1cc3853574c618159797b3be4
-
SHA1
925c2316e4cb825a3c7a2b463a748a2ee50e5272
-
SHA256
56a7cf3d6215ca2d68e4e83e15ce8b44ddd3495a99cf6a079226572109e77d3c
-
SHA512
332453bb8812bd3e8301a4fdb5fd38f3729d7e6a455d60751d51f02b21d427a1e870db261a083997192d3faea7fe5b9935bf0de028eee99b4c9846714446a564
-
SSDEEP
49152:vGAbVayYOeHX7dMnwqHiO6BxN0YfSqu2J25qVhzmuh22k:vUHx1gCNQUUGNhDk
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 56a7cf3d6215ca2d68e4e83e15ce8b44ddd3495a99cf6a079226572109e77d3c
Files
-
56a7cf3d6215ca2d68e4e83e15ce8b44ddd3495a99cf6a079226572109e77d3c.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 2.7MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 2.2MB - Virtual size: 2.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 281KB - Virtual size: 284KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE