Static task
static1
Behavioral task
behavioral1
Sample
LPO.exe
Resource
win7-20240729-en
General
-
Target
12cae931fcb16e4e8d7c47130275d2685dd626a2225be3af8712e9fbc6f8ac3c
-
Size
832KB
-
MD5
8cffb07cd9aaca7bafdc9f71d43c354b
-
SHA1
197ccd33fcf615b6bd0af0d936146ee2ba834eda
-
SHA256
12cae931fcb16e4e8d7c47130275d2685dd626a2225be3af8712e9fbc6f8ac3c
-
SHA512
9d7e7438b4d9f84e7e6f9e5378dae8c35972807a97fbd89a6a4c8f3f5e57c7337f4b782f38ed45def5b518377157baf08360d8806f026bc7ea0c82f071217d95
-
SSDEEP
24576:lzcMlfdgWlVoVwZ57wEtlnF5zXrye7isVeebewgYwcKBI:+cfdgWlkqwUvzX+tSe73i
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/LPO.exe
Files
-
12cae931fcb16e4e8d7c47130275d2685dd626a2225be3af8712e9fbc6f8ac3c.rar
-
LPO.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ