Behavioral task
behavioral1
Sample
a3ff9fb3ce8451d0ef0e3a76ee87a744e70374d7b93c359afb2ff57c585b3fa4.exe
Resource
win7-20240708-en
General
-
Target
a3ff9fb3ce8451d0ef0e3a76ee87a744e70374d7b93c359afb2ff57c585b3fa4
-
Size
323KB
-
MD5
1c3c401409e71c86ce4ca7fcab1efc02
-
SHA1
b6a997d74cb99260781a0d2c2e1561d46f2e2d1e
-
SHA256
a3ff9fb3ce8451d0ef0e3a76ee87a744e70374d7b93c359afb2ff57c585b3fa4
-
SHA512
e2299a1439fc0400adcdc2ffd6a1e47208b59e2daa96304b441c6874fa2b7acf57c89abd5068adbe505c13df4b112b358158fc6e6ede0fadcc56fecc46010607
-
SSDEEP
6144:DknAHrO+MLJMMb4ojWGgMg8G8GalOrR7At:D/O+M9ruMg874R
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a3ff9fb3ce8451d0ef0e3a76ee87a744e70374d7b93c359afb2ff57c585b3fa4
Files
-
a3ff9fb3ce8451d0ef0e3a76ee87a744e70374d7b93c359afb2ff57c585b3fa4.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 152KB - Virtual size: 152KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 169KB - Virtual size: 172KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE