TEdrJndc[.]cpl | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TEdrJndc.cpl
Size

1KB
MD5

14bfcde234c780dad3abfd59d30e3a7c
SHA1

c62a672580f5a8a9ef50c7652307030e3e5ea171
SHA256

289358ea8437d5c2ceeb2d8397c8f99f12b858c5e48cf21225ce7adb54980c8e
SHA512

20a77affacf42a013e14b00396d7c15125e7d624eeb72a126ab2710923a1c028a4ab584202562330ba5ae61034f0c1ad7a5df0ed3ba631fb36f70ab0dd93133a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Device/HarddiskVolume9/RECYCLER/S-3-5-01-4621304173-6055156028-813125507-4057/TEdrJndc.cpl

Files

TEdrJndc.cpl
.zip

Password: S@ndb0x!2023@@
Device/HarddiskVolume9/RECYCLER/S-3-5-01-4621304173-6055156028-813125507-4057/TEdrJndc.cpl
.dll windows x86

Password: S@ndb0x!2023@@

b6f391375d741ab65301de3824d105be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateMutexA
CreateProcessA
GetLastError
GetModuleFileNameA
ReleaseMutex
lstrcpyA
lstrlenA

Sections

.text
Size: 1024B - Virtual size: 566B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 307B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 302B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
manifest.json