JC_41da7174851711ef5c2c243ae2e02b09bbd55c980e3595d27d0949851df7a864 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

JC_41da7174851711ef5c2c243ae2e02b09bbd55c980e3595d27d0949851df7a864
Size

3.5MB
MD5

75f0b7bf76b4770cc6dec774e47c1f0d
SHA1

62158ad92f479a4b0ebed59b1f5963e9ff2ad001
SHA256

41da7174851711ef5c2c243ae2e02b09bbd55c980e3595d27d0949851df7a864
SHA512

b72f47d2a08b7db524f6eb887890d6364ab0fad2661a55f99b8cbf76d9455dd2d36a794c02b6ea4aac09e04a70d333b699df71e34ab91129d642563a85cb154c
SSDEEP

98304:xGjkC9nWaYbz0DJMNCnF88pQBZqtvC5SaZXvJEJ2PJTJ:xGjk4nybz0DJMO6qGSaZXA2z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JC_41da7174851711ef5c2c243ae2e02b09bbd55c980e3595d27d0949851df7a864

Files

JC_41da7174851711ef5c2c243ae2e02b09bbd55c980e3595d27d0949851df7a864
.exe windows x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 392KB - Virtual size: 844KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mvqouawp
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dkumsssr
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE