a70174e4dde9a4ae006ce5ecfd8132e0exe_JC[.]exe | Triage

Sharing

General

Target

a70174e4dde9a4ae006ce5ecfd8132e0exe_JC.exe
Size

56KB
MD5

a70174e4dde9a4ae006ce5ecfd8132e0
SHA1

4bc396ada2d9bdd6324e50d9cd457495bae01e33
SHA256

000312a0211c3dd3cbf931a9b324ca788b1cc0ca4ca93263d0066f6e8ea92549
SHA512

5b718a8d9aaf9b8099f9b607dbd96b10c675bb21ff9dcc52d6b707f4e84cbf67a84f700621fa026e448c92a6d54fc3094c736acf175273e6aae1d22c4da84a55
SSDEEP

768:uAHUnSwU9DCR/hxsJ3QEgpQs7+rs6QOp4Scueu4UkYv9zNmlgHNWf1iHsg+KK0jL:uDU9VepQs7+gm4UkUG6NWfkRK02r13D6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a70174e4dde9a4ae006ce5ecfd8132e0exe_JC.exe

Files

a70174e4dde9a4ae006ce5ecfd8132e0exe_JC.exe
.exe windows:4 windows x86

278feff42edfeaede86548f885cf6131

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleInputExeNameA
ReadConsoleInputW
GetConsoleKeyboardLayoutNameW
RtlFillMemory
DebugBreak
TlsSetValue
UnregisterConsoleIME
RegisterConsoleVDM
FormatMessageA
SetCommConfig
SetTimerQueueTimer

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE