Behavioral task
behavioral1
Sample
f8768eebcd4faddc0e3b55526eef990357a10510c37db29d6ba4a90a08360df7.exe
Resource
win7-20240903-en
General
-
Target
f8768eebcd4faddc0e3b55526eef990357a10510c37db29d6ba4a90a08360df7
-
Size
502KB
-
MD5
53b2152d90d00bf07558939da85fff18
-
SHA1
60d4bb6e3e30d2cd180099839ce942e152c67b71
-
SHA256
f8768eebcd4faddc0e3b55526eef990357a10510c37db29d6ba4a90a08360df7
-
SHA512
0f7bfa8064fc09b3bf6c98b78164dd5a65c2edad3067163346f02cde1b84eab39ab6ca4b400ce611990c07598ffc4009a8294bc31c4480e005da094b1af90525
-
SSDEEP
12288:gIy9vIieKNH6zQ+fXFv8oP9i5mEmogAFWIHaXr3HTKz+AHbf:gv9Ailsz/h9ZElVH6r05T
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f8768eebcd4faddc0e3b55526eef990357a10510c37db29d6ba4a90a08360df7
Files
-
f8768eebcd4faddc0e3b55526eef990357a10510c37db29d6ba4a90a08360df7.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 944KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 477KB - Virtual size: 480KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
R!q��us Size: 16KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE