Behavioral task
behavioral1
Sample
e2e2ba4cec2ccf5bc33ec28eee08535278ac986032e0befe24ef56038e25da06.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
e2e2ba4cec2ccf5bc33ec28eee08535278ac986032e0befe24ef56038e25da06.exe
Resource
win10v2004-20241007-en
General
-
Target
e2e2ba4cec2ccf5bc33ec28eee08535278ac986032e0befe24ef56038e25da06
-
Size
134KB
-
MD5
b9d456f72aa9fddb7410de3b686aefe1
-
SHA1
8c461b35647a0c57134ec694eed4338e1d5dba27
-
SHA256
e2e2ba4cec2ccf5bc33ec28eee08535278ac986032e0befe24ef56038e25da06
-
SHA512
59b2b42e5c6064a9d82111151f0717fd114b79758889c402ba975a9d251a9e8d7ea2099f6448e2e5330333bc77a8e8c358cccf2a6456a5ba2ce624e4ddfd4623
-
SSDEEP
1536:New08ukP5sZK20EGIBpwW6NeleEQ77nuUWXJmU2AjpH/e3msYpKZZkUR0:Y0uk8QsH47nW5ppfe3msYpKZZQ
Malware Config
Signatures
-
Urelas family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e2e2ba4cec2ccf5bc33ec28eee08535278ac986032e0befe24ef56038e25da06
Files
-
e2e2ba4cec2ccf5bc33ec28eee08535278ac986032e0befe24ef56038e25da06.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 61KB - Virtual size: 61KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 14KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 49KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ