JC_098a17fada17cc8be867f805986720440bc34f214ace9d233a2a9b20b4aec31e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

JC_098a17fada17cc8be867f805986720440bc34f214ace9d233a2a9b20b4aec31e
Size

8.9MB
MD5

47e129b22704f2620170bfaa76af048d
SHA1

ca2169f29516cca2a16ae2f27b638338aeeee8ff
SHA256

098a17fada17cc8be867f805986720440bc34f214ace9d233a2a9b20b4aec31e
SHA512

88899922ed2f4c62f1a3a4c13e0d19b08893160b0f7e8b65955d97faf8b0abfac5a0edb36fb650a30dc809d8539a074e3b198d8cd5ba65ba647964c31aaadab8
SSDEEP

196608:XUDvjY8QH36XYSYyxCHvEdYMQ4azC5dZs:XUDvjY8GexCMrQ4azC5dZs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JC_098a17fada17cc8be867f805986720440bc34f214ace9d233a2a9b20b4aec31e

Files

JC_098a17fada17cc8be867f805986720440bc34f214ace9d233a2a9b20b4aec31e
.exe windows x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 930KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 11.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hpcgbsqd
Size: 7.9MB - Virtual size: 7.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fxcnbwnc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE