2b5a79fecde4ed096d875716c6cddbee_JC[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b5a79fecde4ed096d875716c6cddbee_JC.bin
Size

510KB
MD5

e721772a2a7fa409f1ce84b9e126abc3
SHA1

46931dd6e25264bf056dfbf0dc2fd325aae0febf
SHA256

3d1ccc3c6eed1be3c96760765ec8738163568ae2719c2d407c1926c67518f00d
SHA512

21a67d4bc029b05e8fad744135a0764207d648b5da6a2bc32552c18237f2164db54abd6f3b67a811d5682f184442c7ed28589cba3fe256d61face255cbde6ebb
SSDEEP

12288:BAMIlukrPWX2H1zhhSFyAtBsY4o6rNxqNF8i:BvIsKPEFye2l81

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/cf0b68e32a1fa28387898e8930b324036ee8d1cee5db66e38c7d9b07381126ea.exe

Files

2b5a79fecde4ed096d875716c6cddbee_JC.bin
.zip

Password: infected
cf0b68e32a1fa28387898e8930b324036ee8d1cee5db66e38c7d9b07381126ea.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 926KB - Virtual size: 926KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ