Behavioral task
behavioral1
Sample
c559394a38af8410033d8bebf42869335b54ae384e67893df6fb87e6a1af8bb3N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
c559394a38af8410033d8bebf42869335b54ae384e67893df6fb87e6a1af8bb3N.exe
Resource
win10v2004-20240802-en
General
-
Target
c559394a38af8410033d8bebf42869335b54ae384e67893df6fb87e6a1af8bb3N
-
Size
91KB
-
MD5
780f385de494962d1d618d8496d39e80
-
SHA1
45e876cf73cbd39b1352cc07d5f613e9cf3bdb0b
-
SHA256
c559394a38af8410033d8bebf42869335b54ae384e67893df6fb87e6a1af8bb3
-
SHA512
707ba8f7527ec08ecda172f7f1b4f91726a3a7290cc5f01cb9aca542c2256b4030840c1254c4928f16b31f5bf325007776e9f64669e568cf84b947a2bec149d3
-
SSDEEP
1536:XRsjdLaslqdBXvTUL0Hnouy8Vj9RsjdLaslqdBXvTUL0Hnouy8Vjq:XOJKqsout99OJKqsout9q
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c559394a38af8410033d8bebf42869335b54ae384e67893df6fb87e6a1af8bb3N
Files
-
c559394a38af8410033d8bebf42869335b54ae384e67893df6fb87e6a1af8bb3N.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 140KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 31KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE