NA_NA_0b3c07cd7cd8c0exeexe_JC[.]exe | Triage

Sharing

General

Target

NA_NA_0b3c07cd7cd8c0exeexe_JC.exe
Size

978KB
MD5

0b3c07cd7cd8c098d48e297b2f63678c
SHA1

d9410a3ce730d3c7180b5160ec4c81a7b29a6f33
SHA256

3eebaf69efb6e9465c82f8f3d40ca45beed4cfde5dfa3c673aa80813f5200281
SHA512

53951e346f5a219a7d01a35cad6ce0cffaf071ee190ea507dc1f510afd1090bd26365b5516cad499c2ab0e0d61d71bd11cb404955bb1e08fb0b6849dab3391bf
SSDEEP

24576:pF/cuoRb4ZReOAXpmtzdcT1KSSKSs9es/v4aCmeFTP3aKF4:pF/cuoRb4IYvSSK/X4aC9TPL4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NA_NA_0b3c07cd7cd8c0exeexe_JC.exe

Files

NA_NA_0b3c07cd7cd8c0exeexe_JC.exe
.exe windows x86

06fa29813db6c1f98441703604fe5cf8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetModuleHandleA
VirtualProtect
ExitProcess

Sections

.text
Size: 588KB - Virtual size: 588KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ