Behavioral task
behavioral1
Sample
e57e878fceb615fbf13cc3315dc473aae7bf740f69b20773139621c0e28aca1aN.exe
Resource
win7-20240903-en
General
-
Target
e57e878fceb615fbf13cc3315dc473aae7bf740f69b20773139621c0e28aca1aN
-
Size
1.9MB
-
MD5
0a9b0ab303700ffb1cf120cdcfa81310
-
SHA1
89defcde170f41701bb89cd6bcb593c6555ddad3
-
SHA256
e57e878fceb615fbf13cc3315dc473aae7bf740f69b20773139621c0e28aca1a
-
SHA512
f3c1c7d2420ea0d6f8bf9590862e4d0d5af93629fe6dd59dc3051c432022b03774f92e52f8b1a467a30f9c0ebb64b0ce714dcf660df523d104126b34158bb506
-
SSDEEP
24576:Bf4vUDMnSGjw5TwcJ1PC/xQAUBbUIfKmvhNNr2j3An7:BgM2jw5zPC/6AUBAIfKO1v
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e57e878fceb615fbf13cc3315dc473aae7bf740f69b20773139621c0e28aca1aN
Files
-
e57e878fceb615fbf13cc3315dc473aae7bf740f69b20773139621c0e28aca1aN.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 936KB - Virtual size: 936KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 998KB - Virtual size: 1000KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 13KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE