20eff22b1c3305c733185d85aa97234d7fbb478218084f787480e4ce7b9b4035_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20eff22b1c3305c733185d85aa97234d7fbb478218084f787480e4ce7b9b4035_JC.exe
Size

265KB
MD5

34f81e4475b67bedaafe1a8e6611c44a
SHA1

0ec9fa456f44e6d9ead382bd6725a6749fe469aa
SHA256

20eff22b1c3305c733185d85aa97234d7fbb478218084f787480e4ce7b9b4035
SHA512

af9cb6742b07b44ffad6749cd9a38fc712a30c4da6e71cc1b9f37c7e92c51b9739498811a74ee713239c4c9e1d50b895032693027c0eaadc6b29ef2d80a45941
SSDEEP

3072:bFwPdCt0ft8fPl67SQzNMbu3zbxSY7KZnS/KzJBL:sCqfOl67SQzNMbu3zbL7qS/a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20eff22b1c3305c733185d85aa97234d7fbb478218084f787480e4ce7b9b4035_JC.exe

Files

20eff22b1c3305c733185d85aa97234d7fbb478218084f787480e4ce7b9b4035_JC.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

XRIp1L
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 213KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ