c8e215cf026b418aed9b43892ff43c79_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8e215cf026b418aed9b43892ff43c79_JC.exe
Size

57KB
MD5

c8e215cf026b418aed9b43892ff43c79
SHA1

22e84d75194e8239cf930263ba26881d8af2944b
SHA256

f8bc1213c55308c8d486628894d9c670815e039eb6e6e664bf1b5528eb13c13b
SHA512

744f270758704e77fdda4a515594d47363229049059c982629b01732fa0163b36b00f5244195daaa9316b451e1850e647d2a6c55aedbd216f99909fe9624f093
SSDEEP

1536:o6tntu23inPVuCoZqc0XkPD99txdUH+E9a:ocn0nPUCoZ/Rxdr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8e215cf026b418aed9b43892ff43c79_JC.exe

Files

c8e215cf026b418aed9b43892ff43c79_JC.exe
.exe windows:4 windows x86

55fb0b4a2e775d690ab2f7bbf244d19f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
GlobalGetAtomNameW
LZSeek
OpenWaitableTimerA
_lopen
GetStringTypeExW
GetConsoleAliasA
WriteConsoleOutputCharacterA
ExitVDM
WritePrivateProfileSectionW
GetModuleHandleExA
GetCommandLineW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE