f7d854990d5daa07a337415861d4888f_JC[.]exe | Triage

Sharing

General

Target

f7d854990d5daa07a337415861d4888f_JC.exe
Size

78KB
MD5

f7d854990d5daa07a337415861d4888f
SHA1

04e192a4dd92691d00ff7243d753d6c7e0773126
SHA256

6c1d332c2c1a5e8e2da5f4f7bafd717f6e4bc19d7454e91a847e7f797e53afc9
SHA512

d4829a775799b1432d454ed1ef8441262f4a2ee35c013ec43a0767770cec54a19b467fb196845d32ca21b27b0daeb98380b02a6f95887cdd95ee269f4f86ab73
SSDEEP

1536:PL2hIZA4fFfgK6xwHquw63wIl3eCEwWsgNB6:PLnFYZx7CeCEwre6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7d854990d5daa07a337415861d4888f_JC.exe

Files

f7d854990d5daa07a337415861d4888f_JC.exe
.exe windows:5 windows x86

b892955ae494fe908bdf52e81e1dfa4c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
VirtualAlloc
VirtualFree
VirtualProtect

user32

EndPaint

advapi32

RegCloseKey

shell32

ShellExecuteA

ws2_32

WSAStartup

iphlpapi

GetAdaptersAddresses

Sections

VDHDOJDO
Size: - Virtual size: 160KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VDHDOJDO
Size: 76KB - Virtual size: 80KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE