a2b46b89a136fbfd5bcd2e6078e63de0exe_JC[.]exe | Triage

Sharing

General

Target

a2b46b89a136fbfd5bcd2e6078e63de0exe_JC.exe
Size

63KB
MD5

a2b46b89a136fbfd5bcd2e6078e63de0
SHA1

55c639fa3a84208348f252cf35f02aff6d5c5569
SHA256

670844ee22a9f5eea13fb1219ff88f64c2f16e2eea8fe9bd423101407d1a8dfa
SHA512

8fcc5ee300cba7bfc171114f8dfea44bc4b2b51553ba5dd829e1eb0ea95eb5c66544e82cd7da69f4c07369ca09395023c2c64ece47948ff7b7c974b82fe85c00
SSDEEP

1536:ARbWYda/qBCacfGFq8V2j1i5tJpk9KQIAtppj/Imwnprux4AOl48C4s3:ARPQq0acfGFqpjQ5tJpkMaZdx4AO+Ks3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2b46b89a136fbfd5bcd2e6078e63de0exe_JC.exe

Files

a2b46b89a136fbfd5bcd2e6078e63de0exe_JC.exe
.exe windows:4 windows x86

9f96e933fd776880fa067411a032ab47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringW
LocalFileTimeToFileTime
_lwrite
_hwrite
ExpandEnvironmentStringsW
GetModuleFileNameW
CreateHardLinkA
NumaVirtualQueryNode
DeleteVolumeMountPointA
GetConsoleNlsMode

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE