c6e32f6b9d024286812928cbbe6d7f70exe_JC[.]exe | Triage

Sharing

General

Target

c6e32f6b9d024286812928cbbe6d7f70exe_JC.exe
Size

62KB
MD5

c6e32f6b9d024286812928cbbe6d7f70
SHA1

32f54185f7b4e7e4cb64b347e79689bd15c05d53
SHA256

dbc934467891dabf12d45dd822854926d639b9d47d95b2d0a307ad546f44a343
SHA512

1e526f13774983628b149894b392ffa971634b3c42827e128db0a91babbe1fdf3dcf4a786aa5887c84b6ea5bba8786e50fee1ca91438e265dc6a948caeb29d8b
SSDEEP

1536:SP9znx3yO2w5pC58+LCwrqU+PpxaoNjGN:4dyBw5pRdw23PNj0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6e32f6b9d024286812928cbbe6d7f70exe_JC.exe

Files

c6e32f6b9d024286812928cbbe6d7f70exe_JC.exe
.exe windows:4 windows x86

0948688e4294e9d8a55e1f1049ee0e85

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadProcessMemory
RtlZeroMemory
EnumResourceLanguagesA
GlobalFlags
BindIoCompletionCallback
WaitNamedPipeA
SetStdHandle
WriteTapemark
SetFileApisToANSI
CreateMemoryResourceNotification
SetDefaultCommConfigW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE