15663f7481c8b2a19dbe62014fa8a948bin_JC[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15663f7481c8b2a19dbe62014fa8a948bin_JC.zip
Size

55KB
MD5

3eeca7a41c8ce8886c739a33331570fd
SHA1

61e390b40796e6f734f9481df9b9cbf3314ef4c6
SHA256

680b2756a478fe9ef7eab32686e8b2a1fae175059a9e67284195dbe94fe4ee3b
SHA512

b48735d7d46239aa94b45187eeaa696e20c2e7d10bf3d33b21b8dc034e7d06aedf972488a0d3e74b8be540861fd6d2cd73c34f81ad778a9536b718f101a7fef8
SSDEEP

768:2Eq/zoEL6kBSOgHtfoQHEinQZaJOHHMSKRqjgqb3Bjg7MXW1EaRjgJf2j+/lm5pH:2Eq/KkirHEikHHMLqxKGW1EasOaKEKR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/a96543da023e22eff83c1f152b980627a3efba8bd0d228171df6e4ac3b95ab89.exe

Files

15663f7481c8b2a19dbe62014fa8a948bin_JC.zip
.zip

Password: infected
a96543da023e22eff83c1f152b980627a3efba8bd0d228171df6e4ac3b95ab89.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 143B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ