NA_NA_32cf0f32f404ffexeexe_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NA_NA_32cf0f32f404ffexeexe_JC.exe
Size

956KB
MD5

32cf0f32f404ff3ea57d1d9037cf1b71
SHA1

55a7b8920b0d1893f66fd1b87d7f12e630086ea9
SHA256

3f22d72d95e5d258c6c18daf1521b16381f39366818916fe446eeef5d667a38a
SHA512

eda1f593e542cc6bef9275738c417cb441ec272694164d185b6a5cff73bb863b5f01d584b05af118042a7b9a12874db571b2b301f8d3350ea31b1ff92af75a23
SSDEEP

24576:QG+X7/2qhAtne/SirTAN8C41aTo3/7I6:EXPpSeEN8C41U8/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NA_NA_32cf0f32f404ffexeexe_JC.exe

Files

NA_NA_32cf0f32f404ffexeexe_JC.exe
.exe windows x86

06fa29813db6c1f98441703604fe5cf8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetModuleHandleA
VirtualProtect
ExitProcess

Sections

.text
Size: 574KB - Virtual size: 574KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ