b00b462278f4625451093f94ee90c533_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b00b462278f4625451093f94ee90c533_JC.exe
Size

240KB
MD5

b00b462278f4625451093f94ee90c533
SHA1

a97b790845b1131d930e13cac6f2aade28d06672
SHA256

d5433cecd20953a6eb65c8e28e037214766624935975de59651a48bc4179f303
SHA512

a3f3dfa933508b0ebdd17f277b99767cd96dc0deb35011e27562ee3f9002853e02e4f27e076ca497619a105c6e03f346f9b01a10e6b4586d1ca91142e83ed49b
SSDEEP

6144:aJuXtXxog5E+FWPNfrf6yGEssQxNpbMpUjD5:W8XNE+FuNfrSyGEssQJeUjD5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b00b462278f4625451093f94ee90c533_JC.exe

Files

b00b462278f4625451093f94ee90c533_JC.exe
.exe windows:4 windows x86

3e3d633779e35448851e7a9ca7e72522

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

ole32

CoInitialize

Sections

.MPRESS1
Size: 170KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE