jupyter | b55759ababfdace49ab91a8e190d851c07e02d1a | Triage

Sharing

General

Target

b55759ababfdace49ab91a8e190d851c07e02d1a
Size

732KB
MD5

e513ae618b8d9abde08a4e178be5e348
SHA1

b55759ababfdace49ab91a8e190d851c07e02d1a
SHA256

7a90464fd4f4a9f98752f53ba2eae214c8cfa0543b0aa4b34cb7680400818a18
SHA512

0f87b466411276de6157a301b7acffc147dc709aa943987b208f2943f08dc1a748d673d781a7964034250c56a86c7d41bfbcdb3be8c9e4f168d169d119ad13ac
SSDEEP

12288:Z7aXmcyDsMC3P+TBobFUtA2fbUTGzHRww:Z+iBCB+A2gK

Score

10^/10

jupyter

Malware Config

Extracted

Family

jupyter

C2

http://91.206.178.109

Signatures

Jupyter family
jupyter

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b55759ababfdace49ab91a8e190d851c07e02d1a

Files

b55759ababfdace49ab91a8e190d851c07e02d1a
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 730KB - Virtual size: 730KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ