Behavioral task
behavioral1
Sample
32e4f444d41d3bc4ba25cfa92134a87a2d734bd0cbd66c4bbc674f47ca931bcbN.exe
Resource
win7-20240903-en
General
-
Target
32e4f444d41d3bc4ba25cfa92134a87a2d734bd0cbd66c4bbc674f47ca931bcbN
-
Size
786KB
-
MD5
2a0284d05f31fc596f12f9b287a17550
-
SHA1
10aa9ee1a37616d6cb9ba500191d3c08a599ca0a
-
SHA256
32e4f444d41d3bc4ba25cfa92134a87a2d734bd0cbd66c4bbc674f47ca931bcb
-
SHA512
872b3f34ce1b71f3f94ded4511ec822268e7e0b77492081a822888ec0c44c54aadb77bd7199f34f6955a0151196b5c726f37cce0ecfcab9bec560919bfc59ef9
-
SSDEEP
24576:c6VzNTFJS7Db/g/jX68wHufaxyRxTSAmk:TS6faxy/mk
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 32e4f444d41d3bc4ba25cfa92134a87a2d734bd0cbd66c4bbc674f47ca931bcbN
Files
-
32e4f444d41d3bc4ba25cfa92134a87a2d734bd0cbd66c4bbc674f47ca931bcbN.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 560KB - Virtual size: 560KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 220KB - Virtual size: 220KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE