Behavioral task
behavioral1
Sample
ccd26d5c747791b43a86a23525a1c56bc11c484be91d4e5c028a6d0c492551caN.exe
Resource
win7-20240708-en
General
-
Target
ccd26d5c747791b43a86a23525a1c56bc11c484be91d4e5c028a6d0c492551caN
-
Size
34KB
-
MD5
da7eacaddd271449f3252dae777e2c50
-
SHA1
8c7f9ccc78cebbc3c24edc8a4238194d5eed752c
-
SHA256
ccd26d5c747791b43a86a23525a1c56bc11c484be91d4e5c028a6d0c492551ca
-
SHA512
8e91f535b398a603950a1b2f7884bf07154b1ef7d1ca8bf0a1cf2a93d9c961445b62f03c5a20a1d57517f4cb808b0562f5b43cd4e8d508cedc41c21935631dce
-
SSDEEP
768:bROjawZEjbhxnbcuyD7U9kXfn62tH/1/LpP+g:bRO2wZEjbnouy8Gv6iH/NLpN
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ccd26d5c747791b43a86a23525a1c56bc11c484be91d4e5c028a6d0c492551caN
Files
-
ccd26d5c747791b43a86a23525a1c56bc11c484be91d4e5c028a6d0c492551caN.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 9KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE