vc_tpc[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

vc_tpc.exe
Size

3.5MB
MD5

a4db79f13b83092cb73e0d8f5908df61
SHA1

5a32dd9a450eb78c301e5b18012bb1fa160fb2dc
SHA256

fb3eb083b27d7d3c6907fd38a00270639b329d94d8b8b2ba87d451210ce0ab88
SHA512

ded0a63cbeb01032f562f2f0869044b8247381c6d9dcfa2257de5ee16cbfbbf8d1fafcb14c53f2136c04a9ca23c7dfd6a3c1ec52378753e5e7e62531edf45fe5
SSDEEP

98304:LAI+xFzfUVRZ2woaoSR1afSaxB6jfo5BJjdHWN/qWTIUjXNz3IJp6I:8tXWRZ2woazRMfSaxSo5BxdWpDRXNzYv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
vc_tpc.exe

Files

vc_tpc.exe
.exe windows:4 windows x86 arch:x86

Password: 1212

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ