General
-
Target
0ef816e0afd32dexe_JC.exe
-
Size
15.7MB
-
MD5
0ef816e0afd32df4a573a47233de4ecd
-
SHA1
43159ed96d3339c73bc90cb9a038b81b72a01615
-
SHA256
c0dc26cb376c7cfd57c15936c016dcc23a3bbb5b99e87878a6a8bd53d0c41ba0
-
SHA512
b34e0a2f6fa04966925a40577fa357b96e3b6e72dcea7b44e6f95a2d150d9b84a725d27b87b6f1f6fd8fb45bd7a89a5f36f57c6fa96c71165fc5e829e05de631
-
SSDEEP
196608:ylTPemknGzwHdOgEPHd9BYX/nivPlTXTYPHlTPemknGzwHdOgEPHd9BYX/nivPl4:a3jz0E52/iv1U3jz0E52/iv1
Score
10/10
Malware Config
Signatures
-
Mimikatz family
-
mimikatz is an open source tool to dump credentials on Windows 1 IoCs
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
-
NSIS installer 1 IoCs
Files
-
0ef816e0afd32dexe_JC.exe
Headers
Sections