jpg[.]7z | Triage

Sharing

Copy URL Twitter E-mail

General

Target

jpg.7z
Size

19.4MB
MD5

29515ba7f170e9f68a4c2df3fb49fa04
SHA1

ffdf2c7f9ade16b9e4208b03313d8d5e9f7029d3
SHA256

253779ac02ce75bbd33d0bafeedc28dfcf16d0b5a3335c308733ad0b3de11e9f
SHA512

a09d8eea05ce6809bc0422666e8cb8580387a577b48ff3e76031b3675df30ab5ead8a054f066e74fb553dc04ce2c08965b126f95d4fe6e912900655cae79ade1
SSDEEP

393216:O9M/emraIkO3Hnx0SJBMdyLARgTyCiUk1gHQJ7vvk24GnhrY3xjnbMHtn/:QM/D7h/JOyURgWfUkOu7vv4Gne3ZnQx/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/jpg.exe

Files

jpg.7z
.rar
jpg.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Kapi\source\repos\jpg\jpg\obj\Release\jpg.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 39.9MB - Virtual size: 39.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ