NA_NA_3be2c5c26a9a46exeexe_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NA_NA_3be2c5c26a9a46exeexe_JC.exe
Size

730KB
MD5

3be2c5c26a9a4669cc3013f0fa926146
SHA1

b6160c11103bc12b0a07284b9f051b7e2cd8cde7
SHA256

1f6ea326023eeeaa004cfee7997440355ecda301889c1169aaedad972e586e1d
SHA512

885a056e8da3349ecc963710482c86d17ef0bd5e6afef8f4db66ffdad858a045b707dd147168fa6c2ef7f0b7bbc668d2b527dbaad74202948340934aac201914
SSDEEP

12288:eDErY9cOGNek/IskMN3Yl+Qbbp1fyHTFQpFWqa/m3dKSN51R1OmRFdnnC8/kr/CD:eDiHxQsXZE+QbyHeWN/2Ki5/1Om8Gkm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NA_NA_3be2c5c26a9a46exeexe_JC.exe

Files

NA_NA_3be2c5c26a9a46exeexe_JC.exe
.exe windows x86

7621f0346198f45bc2e02cd4b96ead06

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

RtlAddAtomToAtomTable
RtlCreateProcessParameters
RtlTraceDatabaseCreate

kernel32

GetConsoleWindow
Process32NextW
GetSystemDefaultUILanguage

oleaut32

VarR4FromI4

user32

MessageBoxIndirectA

Sections

.text
Size: 726KB - Virtual size: 728KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE