Behavioral task
behavioral1
Sample
be8819147b2ce2b26b10718af3819e83c018652d1973da6b1465d2c9544a1994.exe
Resource
win7-20240903-en
General
-
Target
be8819147b2ce2b26b10718af3819e83c018652d1973da6b1465d2c9544a1994
-
Size
282KB
-
MD5
22fe2423010cd74a1bd538e8c0a3c0c3
-
SHA1
98a3a362f589a40756f154dad14d7053462cd533
-
SHA256
be8819147b2ce2b26b10718af3819e83c018652d1973da6b1465d2c9544a1994
-
SHA512
d963fcf453f9b673abfdcc2a0554e5c34708dff65a9b92ba58d6a98ce75b680be114eb4d72ff5ee34551fcac0b8a63f117cc145c73bf7f58bb055d035d0105b7
-
SSDEEP
6144:SmVnxWa3L3PjqEPZlWDSmeM3YC/2AnvGsB4Cy6NNFJW9KYuLOush+X5Rhgf:nf3L3PBes1CuAnvBmz6nXW9KYuLrsh+c
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource be8819147b2ce2b26b10718af3819e83c018652d1973da6b1465d2c9544a1994
Files
-
be8819147b2ce2b26b10718af3819e83c018652d1973da6b1465d2c9544a1994.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 41KB - Virtual size: 64KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 15KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 23KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ