Behavioral task
behavioral1
Sample
3d2232357cb3b5bd749fea7ddc0bd29f_JC.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
3d2232357cb3b5bd749fea7ddc0bd29f_JC.exe
Resource
win10v2004-20230915-en
General
-
Target
3d2232357cb3b5bd749fea7ddc0bd29f_JC.exe
-
Size
476KB
-
MD5
3d2232357cb3b5bd749fea7ddc0bd29f
-
SHA1
dea85155aa360dfd8d731497ac6a92846f70dc4b
-
SHA256
98090571aefeb7f85ee36dfc4f6091fc47b16e9838b51ec9bb392dd0bc647a71
-
SHA512
cd7949c084b81a30a0a6b11b5f4a5a3e89d8d826d6044b0d0a76597606ae83d7d9314abf65724eac0e8c259e933b6c21d94908060c3058db3daa30f7f7b7bd2b
-
SSDEEP
6144:WdspDeDrxkg/vrMuJIgwhEFHyOrJcX/Pgqwzm5IzkWjS4e4azExBKO1t4Kb70Nqr:s8kxNhOZElO5kkWjhD4AI
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3d2232357cb3b5bd749fea7ddc0bd29f_JC.exe
Files
-
3d2232357cb3b5bd749fea7ddc0bd29f_JC.exe.exe windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: 276KB - Virtual size: 276KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 156KB - Virtual size: 156KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE