2db0f8e15acbecf242bbbead33103b52_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2db0f8e15acbecf242bbbead33103b52_JC.exe
Size

41KB
MD5

2db0f8e15acbecf242bbbead33103b52
SHA1

165ffbbf0afec164bd295150d80c2b8d089e2d37
SHA256

0cd8dd9c305d7e54cc36bb5397ebb6e21da603296b4f9baf58596ca90210f255
SHA512

90422f49b9cbbcc4347718ad5f899b39949d0faddb00969426c1e2a189dd86b1fa126cd1e951a60639ef0d3125e809e0e296ea63e839186f98616625cfcd8dec
SSDEEP

768:xIP5WOMVs4PSV06ymNNC6S7Cm1n2OBGRIWNSE77DPQ1TTGfGYh+r:xI0OGrOy6NvSpMZrQ1J1r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2db0f8e15acbecf242bbbead33103b52_JC.exe

Files

2db0f8e15acbecf242bbbead33103b52_JC.exe
.exe windows:4 windows x86

79b3362178937bf9559741c46bb9e035

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

Sections

.MPRESS1
Size: 19KB - Virtual size: 432KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE