79b1c6f0974e39d1e4f513eaef5f1f3ad5fd6cd42ce8758f1c7fef791632c82d_JC[.]zip | Triage

Sharing

General

Target

79b1c6f0974e39d1e4f513eaef5f1f3ad5fd6cd42ce8758f1c7fef791632c82d_JC.zip
Size

432KB
MD5

45444ed8c62492e06a04df61e36be59c
SHA1

7484a2ce1e87561b05320dc3b0488048b090574d
SHA256

79b1c6f0974e39d1e4f513eaef5f1f3ad5fd6cd42ce8758f1c7fef791632c82d
SHA512

9db05e5542dc2a07f285b3bd551a344ac68450372e576eef971f6604ec77f44b7b3eb8c6007e60aa10e817037cc2d1f2ac632fca0a4ecacd607ffc3e81cbd34b
SSDEEP

12288:sfLlxLhiy568guzlKcaqFMdBe8Is3vWMaWtoW2:+ltb6TqxuG+7aWtP2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Invoice 230892 PDF.com

Files

79b1c6f0974e39d1e4f513eaef5f1f3ad5fd6cd42ce8758f1c7fef791632c82d_JC.zip
.zip
Invoice 230892 PDF.com
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 522KB - Virtual size: 522KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ