22052024_0633_DXJS_exe_sc[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22052024_0633_DXJS_exe_sc.bin
Size

337KB
MD5

49ede681d318e8a603772d30b45e3662
SHA1

eaef9c51516e3643375bebc64da4448042689a4b
SHA256

ec7a83af40c808b42ee0f09dbbaac44b3a63c5a9e5cd359b1dd30ce409329e0a
SHA512

a7b85bac12a35399b26ffded6ed9f40c81a30b8a26f3dedd6d142a28d045c9f6d2bb0b7c49219a2f1966c74ab99d45e1e832743a792ed53afdb8b6f29336706e
SSDEEP

6144:Xo+pJ8RgQ+Z3szVOJiaR+ULVOX2chG7uhLMiZ3Lcu1Tvk3/m0LZTUQZsh81jI:X5eYZcOJLRhLOVAM0mkJM8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22052024_0633_DXJS_exe_sc.bin

Files

22052024_0633_DXJS_exe_sc.bin
.exe windows:5 windows x64 arch:x64

Password: infected

b547b1487151c8557bcbc6c24574ec6b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

ExitProcess
VirtualAlloc

Sections

.text
Size: 512B - Virtual size: 82B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 335KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE