Static task
static1
Behavioral task
behavioral1
Sample
d587be0ad612c2d7a4da23b5ba99768c7f9d26a503e6028290380684b958c2a9_JC.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
d587be0ad612c2d7a4da23b5ba99768c7f9d26a503e6028290380684b958c2a9_JC.exe
Resource
win10v2004-20230915-en
General
-
Target
d587be0ad612c2d7a4da23b5ba99768c7f9d26a503e6028290380684b958c2a9_JC.exe
-
Size
1.3MB
-
MD5
bf0dcffe812fa67a0509a7eacb405d2c
-
SHA1
c692906d1b5191589791c42b6ece854822ec92dd
-
SHA256
d587be0ad612c2d7a4da23b5ba99768c7f9d26a503e6028290380684b958c2a9
-
SHA512
9a500bb7cd9bbd1ec189107851fec51842e9a2bfbccd99890092cd6a6cdcb8143fef89190572787db153acc611944385a3f0e38337ce77fed24862ed4ba30b48
-
SSDEEP
24576:H+/AKw8rRaVtquKEeyN2H21SYh9vv9jvu4ManAHX:eLUVtuEt4HmSYht9jx5AH
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d587be0ad612c2d7a4da23b5ba99768c7f9d26a503e6028290380684b958c2a9_JC.exe
Files
-
d587be0ad612c2d7a4da23b5ba99768c7f9d26a503e6028290380684b958c2a9_JC.exe.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ