6ca629d84d5453a186759ac2689b79c7_JC[.]exe | Triage

Sharing

General

Target

6ca629d84d5453a186759ac2689b79c7_JC.exe
Size

1.3MB
MD5

6ca629d84d5453a186759ac2689b79c7
SHA1

2b5aac216b32e8cbd7979f813838141835df3889
SHA256

cdc9231ecd74fa8863e8e4cdfab93160029286fce6242cc439fb0a37a3388784
SHA512

d40481e6ddeb5fe5f416a1d9d72143eb933b515125ecad05bf48be7cd7291309bd12423babf9558bd34e335591f506688825673dc5eda8f8a12683ef27171a89
SSDEEP

24576:eXLDCKSfbE134sEM01rynXk6yVX+2q2Fx3ff5LMLcrRKzrVCOm:efvSfbwK3yU1423xwiRKNzm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ca629d84d5453a186759ac2689b79c7_JC.exe

Files

6ca629d84d5453a186759ac2689b79c7_JC.exe
.exe windows x86

aa1ca832e28e2c6a63685365c58b52b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadModule

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ