006cc85f6ae1d1b4a1df046b865dd510_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

006cc85f6ae1d1b4a1df046b865dd510_JC.exe
Size

216KB
MD5

006cc85f6ae1d1b4a1df046b865dd510
SHA1

ce211e82153501d3f84aebc324b76eb318b01433
SHA256

11e626ad5110ca898556a29d46d9da850a8dc5619883fe532bd0ef953fde9918
SHA512

d4bdf48d2bb91e36d8777cfdb73798ccea81fc59b2f17ebd3e5b3c6b2a9860d1b42b89e4d0f524605a64855d286c8e5c2add4b6c6ee8046740d8f29e31a732da
SSDEEP

3072:Q3g3xGFBgAQb3Oudlhe3KC97SJr/ih5+GO2M5hB8NMFzr:Q3g2gAQbdlhkKC9WJrah5iHPR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
006cc85f6ae1d1b4a1df046b865dd510_JC.exe

Files

006cc85f6ae1d1b4a1df046b865dd510_JC.exe
.exe windows:4 windows x86

92ed77dc15f68f4551c6a7fcc1170d0d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellAboutA
SHFileOperationA
FindExecutableA
SHGetFileInfoA
DllUnregisterServer
DragQueryFileA
DragAcceptFiles
SHGetDiskFreeSpaceA
SHGetMalloc
SHChangeNotify

cryptdll

MD5Init
CDBuildVect
MD5Final

kernel32

GetCurrentDirectoryW
GetStringTypeA
CreateDirectoryA
GetFileAttributesExA
FindFirstFileA
FoldStringA
SetEnvironmentVariableA
GetFullPathNameW
GetLocaleInfoA
WriteProcessMemory
DeleteFileA
ReplaceFileA
OpenMutexA
GetProcAddress
ResetEvent
IsValidCodePage
RemoveDirectoryA
ReadConsoleW
FileTimeToSystemTime
InterlockedDecrement
TlsGetValue
GetVersionExA
IsBadStringPtrA
SetEnvironmentVariableA
GetDiskFreeSpaceA
CreateEventW
CreateSemaphoreW
GetProcessVersion
SetCurrentDirectoryA
GetTickCount
lstrcmpA
GetModuleHandleA
GetLocalTime
lstrcmpiA
CompareStringW
WriteConsoleA

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ