Static task
static1
Behavioral task
behavioral1
Sample
044fc65fe947ca8c199e85309e459270_exe32_JC.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
044fc65fe947ca8c199e85309e459270_exe32_JC.exe
Resource
win10v2004-20230915-en
General
-
Target
044fc65fe947ca8c199e85309e459270_exe32_JC.exe
-
Size
133KB
-
MD5
044fc65fe947ca8c199e85309e459270
-
SHA1
deed3ae3232754a60531b016f6d83a4ac59ff065
-
SHA256
da73a7c2f5f2d78a66298b7d6719e817e584b305933a1c42f67e0eb0941eaf21
-
SHA512
0041d449841147e56944bca1736d0e8318599c5e943969e36a3a1b41eab8822ed79e268c41ada6578882a062f06b79f124e5dab461ef685cded844d2a5410149
-
SSDEEP
1536:Ccy53nz6+QcD7PsJQMHSAWJAOoLk7iM0nYlGbaoCBgZJeVFqV2K/US/lWYcRYhX0:xs3GcBCSVCkiMQYnmJbT/V/lWj80
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 044fc65fe947ca8c199e85309e459270_exe32_JC.exe
Files
-
044fc65fe947ca8c199e85309e459270_exe32_JC.exe.exe windows:4 windows x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 4KB - Virtual size: 1.2MB
IMAGE_SCN_MEM_READ
VProtect Size: 616KB - Virtual size: 616KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VProtect Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VProtect Size: 4KB - Virtual size: 4KB
IMAGE_SCN_MEM_READ
VProtect Size: 8KB - Virtual size: 8KB
IMAGE_SCN_MEM_READ