djifcc[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

djifcc.exe
Size

1.9MB
MD5

b36fc7571b0ccd7ca47f6ef790e6fafd
SHA1

1b3cb1354fa5f93262e6367801d18755ab5c4f3e
SHA256

e24938b31c2dde3825c407e06f270366b888b385c21f174100d39f647bb9fa74
SHA512

0059c7b720129ebda7eb5115cdd66f398ce9c6603fb3ace2704e34f58824e4cadefb5504bdd482376cfafe81a1fcefb1b999687d4d66d54bef5c58d269391265
SSDEEP

49152:hC2mzuY88ZGfURU5qRab8hDzV5ejnDUMuczNQIpeE62:hC2mze8ZPUQRigF5ejogQIsQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
djifcc.exe

Files

djifcc.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: - Virtual size: 2.3MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE