0c2980ff0a745e367353101de98965d0_exe32_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0c2980ff0a745e367353101de98965d0_exe32_JC.exe
Size

976KB
MD5

0c2980ff0a745e367353101de98965d0
SHA1

d6b86dc8aa8ed392dddc0706456f4e62f0cfdbef
SHA256

bd26f640de0ce494f683f985c2e5228a1f02ad61b48a6064010064af309c6158
SHA512

c0d96fa0db9fd7ddbd50b9489c8482ceff450f27ef9bb608bed18a20bbc39217304b892f2f86474977f4648dc33b251132f4397776058a7ee329b00a2ddb6555
SSDEEP

12288:U5T5PhBHtKFTmR5Ziw4G4kZPCD593N+TEdBhfUdxIVSjeAlODW8S1nfpxeRb1r33:U59bNi85Zi7LkygABIcoLxRxU7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c2980ff0a745e367353101de98965d0_exe32_JC.exe

Files

0c2980ff0a745e367353101de98965d0_exe32_JC.exe
.exe windows:4 windows x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 72KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qdskemmp
Size: 872KB - Virtual size: 872KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wpwdkvnm
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE