c705bf5562f47eb72af3b7261b409b00exe_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c705bf5562f47eb72af3b7261b409b00exe_JC.exe
Size

66KB
MD5

c705bf5562f47eb72af3b7261b409b00
SHA1

c05edd2d14fc82e3d74fea25c8a7dcbb26816247
SHA256

7d34e0a00812775c75212c55fe74b4922a8630485aeae0b6a062abd4bda2e146
SHA512

48930d39f788e3fe5716d211f92167c1561cce3c804ac1f6a4e2f03b46b3b6c1f8c417758137914c9e2dfe05f6f7fab80051bd653fb2b19f850b010a1953fbb3
SSDEEP

1536:GLwF1VuveU8vYw8HFDEz4o9PEKTuXrLdSFg3AqiMyW5fNGM0l+/631xA/q39E:DF5yDEf9DCbLdSkAqivANGMp/Wxf39E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c705bf5562f47eb72af3b7261b409b00exe_JC.exe

Files

c705bf5562f47eb72af3b7261b409b00exe_JC.exe
.exe windows:4 windows x86

882d832271cc4e0281ff9c4654938cbb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDiskFreeSpaceW
HeapCreate
DuplicateHandle
OutputDebugStringA
RemoveLocalAlternateComputerNameW
ValidateLocale
CheckNameLegalDOS8Dot3W
FatalAppExitA
ValidateLocale
CreateFileW
FlushConsoleInputBuffer

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE