Behavioral task
behavioral1
Sample
152b86cd1e6815b1ce93e5412b50575c7d573e05ffb559c263dee2e371effb34N.exe
Resource
win7-20240903-en
General
-
Target
152b86cd1e6815b1ce93e5412b50575c7d573e05ffb559c263dee2e371effb34N
-
Size
757KB
-
MD5
ccde5722b78247179841802a3925e400
-
SHA1
af41cfb42731c7352f036c836e1882d1e42a0352
-
SHA256
152b86cd1e6815b1ce93e5412b50575c7d573e05ffb559c263dee2e371effb34
-
SHA512
79cb57eae8aa8c9cde06a9e53861e6e384c0f8aea4af36174ceab7c3472b174ec5ad3d1eb783d37d11a712560c58f53eb3ed10be5d16ccfecda8484ae2e040b0
-
SSDEEP
12288:DB+sVOpQidZyVFqZzNct9DmOs2j3u2AiKlzdJvdkLJyOqOyxYlFdFMXX1DkkIpY1:V+7tpi9DmOfK2A1JJvdSq1rn1DIpY
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 152b86cd1e6815b1ce93e5412b50575c7d573e05ffb559c263dee2e371effb34N
Files
-
152b86cd1e6815b1ce93e5412b50575c7d573e05ffb559c263dee2e371effb34N.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 736KB - Virtual size: 736KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 20KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE