Behavioral task
behavioral1
Sample
50a688f4e9ea8c883a4ec10749792551ebf7dd0c967a931ed91b294425d98880.exe
Resource
win7-20240903-en
General
-
Target
50a688f4e9ea8c883a4ec10749792551ebf7dd0c967a931ed91b294425d98880
-
Size
330KB
-
MD5
9ac8b0e180e7a026d052ead77a176c47
-
SHA1
ebcc4c5be4449f9162baece99d7d39cc5936f39e
-
SHA256
50a688f4e9ea8c883a4ec10749792551ebf7dd0c967a931ed91b294425d98880
-
SHA512
e010f389141f06f505f1b60aa0f0028fc7058c4a7507529171a185ca2b705a9a826d525c8b6f30323c14497fa8b7bc3c62de6e5e9de97c3f00d315938bad4cae
-
SSDEEP
6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbeB:R4wFHoSHYHUrAwfMp3CDB
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 50a688f4e9ea8c883a4ec10749792551ebf7dd0c967a931ed91b294425d98880
Files
-
50a688f4e9ea8c883a4ec10749792551ebf7dd0c967a931ed91b294425d98880.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 104KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 40KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE