1edee1ab236397e94130f5d7e4959761_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1edee1ab236397e94130f5d7e4959761_JC.exe
Size

847KB
MD5

1edee1ab236397e94130f5d7e4959761
SHA1

1ea850af3958564fef4ce71ca75fe068924e648d
SHA256

163407f82a4e1d75c1a37808804f162b99e2f1df03dc1f0cfbad310661986efb
SHA512

73e11bb3621e2c2ebffe5d5f50a319f0d3cfb07d0fec37e8588d75b5c7a639492ac5bcba53d08c09f5796731dc240ca31517df94c0244c2e8129b841639d5cc5
SSDEEP

12288:MB6ax9sMqIHZ9Bq0q1HLI+OAG/kPybSN9vAKm68Eh+ov0s3B0EfSDCTi+d:mzsMJw0q1HLHOZSPvAKh0sR0OSI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1edee1ab236397e94130f5d7e4959761_JC.exe

Files

1edee1ab236397e94130f5d7e4959761_JC.exe
.exe windows:4 windows x86

f7d7aebc53da63d60a50b5993b57877a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

CharNextA

advapi32

RegCloseKey

oleaut32

SysFreeString

wsock32

send

Sections

.
Size: 28KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ