2c6fa59599316758f5dacd6a940887c0[.]exe | Triage

Sharing

General

Target

2c6fa59599316758f5dacd6a940887c0.exe
Size

852KB
MD5

2c6fa59599316758f5dacd6a940887c0
SHA1

d7c2b52d0e2552475b2de748ecf5b5bbd50ab253
SHA256

df3e914f82d2192e4d4a89de4177a485a0f0c33ff7777ac0dc0e418e48a1664d
SHA512

1c8bcd6f75ebe56178f5edac14f52ec59f0c629f02c37b3b6d20491b727ad674cc8d599ad5f521c3ab0cbae27824fa79c568e2a277f210625531e42eace098dc
SSDEEP

24576:lu6dJvZ1UtWbv56Ov67U+rRspk8kcHX6lYv7d8:ZvQMbvhUU+Fyk8ksQ2d8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c6fa59599316758f5dacd6a940887c0.exe

Files

2c6fa59599316758f5dacd6a940887c0.exe
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\re\jdk7u45\229\build\windows-i586\tmp\deploy\plugin\npdeployJava1\obj\npdeployJava1.pdb

Sections

.text
Size: 433KB - Virtual size: 432KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 254KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ