092a4530a1d61dexe_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

092a4530a1d61dexe_JC.exe
Size

4.3MB
MD5

092a4530a1d61d864e06b1600e56085e
SHA1

1e784f8f09f0a9f9ea159be267ab764a069980ab
SHA256

e03b9ea28e94bed7f2c0dc3eb1c891af936dbd46417157f2ed51adcd3a95f6c5
SHA512

8a9fe3a3a0db4516504ca123e1f398968554edc87bd99d80960b8cc6846f79cfb4c6866d954319655cd25e74f5987e4e65a7992a65d7ee81ff7e64db19d5ca3f
SSDEEP

98304:oN/RNCx9s1FjbKbPTETbtjIy3OMWGIe3x2hCrqRu2chuoo0iXjWoix8rDs027:QJ7OYAXe3x2Dcdo0izWok8E027

Score

1^/10

Malware Config

Signatures

Files

092a4530a1d61dexe_JC.exe
.exe windows x86

3827cd65d0056aa19c39b7a9de918d68

Code Sign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29-03-2022 00:00

Not After

14-03-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

59:9e:fe:3d:d8:d5:ea:5e:c1:5b:f1:c7
Certificate

Issuer

CN=GlobalSign GCC R45 CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Not Before

12-01-2022 09:56

Not After

18-03-2024 06:55

Subject

CN=Zilong Game Limited,O=Zilong Game Limited,L=Central and Western,ST=Hong Kong Island,C=HK

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

22:eb:d6:87:2a:1f:93:74:4f:cb:35:47:ee:fd:3c:06:40:89:a9:67
Signer

Actual PE Digest

22:eb:d6:87:2a:1f:93:74:4f:cb:35:47:ee:fd:3c:06:40:89:a9:67

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DecodePointer
ExitThread
CreateThread
GetTimeFormatW
GetDateFormatW
GetSystemTimeAsFileTime
MoveFileA
HeapReAlloc
GetDriveTypeA
FindFirstFileExA
FindNextFileA
RtlUnwind
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
RaiseException
ExitProcess
HeapQueryInformation
HeapSize
GetSystemInfo
VirtualQuery
SetStdHandle
SetUnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
EncodePointer
HeapCreate
QueryPerformanceCounter
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
GetFullPathNameA
WriteConsoleW
GetStringTypeW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
SetEnvironmentVariableA
GetDriveTypeW
GetTimeFormatA
InterlockedCompareExchange
GetStartupInfoW
HeapSetInformation
FindResourceExW
GetUserDefaultLCID
VirtualProtect
GetNumberFormatW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
GetTempPathW
GetTempFileNameW
GetSystemDirectoryW
GlobalFlags
InterlockedIncrement
GetFileTime
GetFileAttributesW
FileTimeToLocalFileTime
GetFileAttributesExW
SetErrorMode
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
lstrlenA
GlobalGetAtomNameW
GlobalFindAtomW
CompareStringW
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
ReleaseActCtx
CreateActCtxW
SuspendThread
SetThreadPriority
FreeResource
GlobalAddAtomW
GetCurrentProcessId
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrcmpA
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
lstrcmpW
GetLocaleInfoW
LoadLibraryExW
InterlockedExchange
GlobalFree
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
MulDiv
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
ActivateActCtx
DeactivateActCtx
CreateFileW
lstrcmpiW
GetThreadLocale
lstrlenW
GetFileInformationByHandle
DuplicateHandle
FileTimeToSystemTime
GetCurrentProcess
SetFilePointer
GetFileSizeEx
WriteFile
SetFilePointerEx
SystemTimeToFileTime
ReleaseSemaphore
CreateSemaphoreA
TerminateThread
CreateEventA
VirtualAlloc
CreateToolhelp32Snapshot
Process32Next
GetLocalTime
SetFileAttributesA
RemoveDirectoryA
CreateDirectoryA
GetFileAttributesA
WideCharToMultiByte
OpenProcess
Process32First
GetFileSize
FormatMessageA
ExpandEnvironmentStringsA
WaitForMultipleObjects
GetFileType
LoadLibraryA
GetStdHandle
PeekNamedPipe
DeleteCriticalSection
EnterCriticalSection
SetLastError
LeaveCriticalSection
InitializeCriticalSection
VerifyVersionInfoA
SleepEx
VerSetConditionMask
GetDiskFreeSpaceExA
CreateEventW
ResetEvent
GetTickCount
GetModuleHandleW
SetEvent
TerminateProcess
GetPrivateProfileIntA
LoadLibraryW
FreeLibrary
CloseHandle
GetModuleHandleA
CreatePipe
DeviceIoControl
GetProcAddress
GetStartupInfoA
ReadFile
CreateProcessA
GetVersionExW
GetProcessHeap
HeapFree
HeapAlloc
CreateFileA
lstrcpyW
GetTempPathA
GetCurrentDirectoryA
GetPrivateProfileStringA
GetCurrentDirectoryW
GetLastError
MultiByteToWideChar
GetExitCodeProcess
WaitForSingleObject
DeleteFileA
SetFileAttributesW
DeleteFileW
GetModuleFileNameW
CopyFileW
Sleep
CreateProcessW
GetCommandLineW
ResumeThread
LockResource
SizeofResource
LoadResource
FindResourceW
SetHandleCount
CopyFileA
GetDateFormatA

user32

LoadCursorW
GetSysColorBrush
IntersectRect
MapVirtualKeyW
GetKeyNameTextW
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
RedrawWindow
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
CallWindowProcW
GetMenu
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
CopyRect
GetWindowTextLengthW
GetWindowTextW
GetScrollPos
SetScrollPos
SetFocus
GetClassNameW
DrawStateW
LoadMenuW
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamW
GetDlgItem
GetNextDlgTabItem
EndDialog
RegisterWindowMessageW
GetMessageW
DispatchMessageW
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageW
ValidateRect
GetAsyncKeyState
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetWindow
RealChildWindowFromPoint
MapDialogRect
SetWindowPos
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
IsWindow
ScreenToClient
PtInRect
GetWindowThreadProcessId
GetLastActivePopup
IsWindowEnabled
MessageBoxW
ShowOwnedPopups
SetCursor
PostQuitMessage
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetFocus
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
CharUpperW
PostMessageA
FindWindowA
IsZoomed
UnionRect
EnableScrollBar
MsgWaitForMultipleObjects
TranslateMessage
EnableWindow
SendMessageW
GetSystemMetrics
LoadBitmapW
ReleaseDC
PeekMessageA
DispatchMessageA
SendMessageA
ClientToScreen
GetNextDlgGroupItem
WindowFromPoint
DrawEdge
GetCapture
DrawFocusRect
OffsetRect
GetSysColor
GetCursorPos
ReleaseCapture
FillRect
LoadImageW
InflateRect
FrameRect
IsRectEmpty
DestroyWindow
RegisterClassExW
GetWindowLongW
SetWindowLongW
CreateWindowExW
UpdateWindow
UpdateLayeredWindow
MonitorFromPoint
GetWindowRgn
DestroyCursor
SubtractRect
MapVirtualKeyExW
IsCharLowerW
GetDoubleClickTime
CreatePopupMenu
GetUpdateRect
DefWindowProcW
PostMessageW
IsCharAlphaNumericW
GetParent
SetWindowRgn
GetSystemMenu
GetWindowRect
IsIconic
DrawIcon
GetClientRect
GetDC
InvalidateRect
DeleteMenu
SetRectEmpty
EnumDisplayMonitors
SetLayeredWindowAttributes
SetTimer
KillTimer
SetCapture
WaitMessage
DestroyIcon
MessageBeep
SetWindowContextHelpId
NotifyWinEvent
AppendMenuW
IsClipboardFormatAvailable
CreateMenu
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
IsMenu
HideCaret
InvertRect
PostThreadMessageW
CharUpperBuffW
CopyIcon
RegisterClipboardFormatW
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
LockWindowUpdate
BringWindowToTop
SetCursorPos
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawFrameControl
DrawIconEx
SetClassLongW
DestroyAcceleratorTable
SetParent
CopyImage
UnregisterClassW
InvalidateRgn
SetRect
CopyAcceleratorTableW
CharNextW
GetMenuDefaultItem
SetMenuDefaultItem
EndPaint
GetIconInfo

gdi32

SetTextAlign
GetLayout
SetLayout
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
GetStockObject
SelectPalette
GetObjectType
CreatePen
CreateHatchBrush
CreateRectRgnIndirect
PatBlt
SetRectRgn
GetMapMode
DPtoLP
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
MoveToEx
CreateDIBSection
GetBkColor
GetTextColor
GetRgnBox
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
OffsetRgn
SetDIBColorTable
RealizePalette
SetPixel
Rectangle
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
ExtFloodFill
SetPaletteEntries
EnumFontFamiliesExW
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetTextFaceW
SetPixelV
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateBitmap
CreateDCW
CopyMetaFileW
GetDeviceCaps
GetTextExtentPoint32W
StretchBlt
CreateDIBitmap
DeleteDC
DeleteObject
SelectObject
SelectClipRgn
CreateCompatibleBitmap
CreateSolidBrush
BitBlt
CreateFontIndirectW
CreateCompatibleDC
CombineRgn
GetObjectW
CreateRectRgn
CreateRoundRectRgn
GetPixel
CreatePatternBrush

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegDeleteKeyW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegCreateKeyW
RegSetValueExW
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextA
CryptCreateHash
CryptDestroyHash
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegQueryValueExW
RegDeleteValueW
RegCreateKeyExW
CryptHashData

shell32

ShellExecuteW
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetFileInfoW
ShellExecuteExW
DragQueryFileW
DragFinish
SHAppBarMessage

comctl32

InitCommonControlsEx
_TrackMouseEvent
ImageList_GetIconSize

shlwapi

PathFindExtensionW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecA
PathFileExistsA
PathFindFileNameA
PathAppendA
PathRemoveFileSpecW
PathFileExistsW
PathFindFileNameW

ole32

OleLockRunning
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoInitializeEx
CreateStreamOnHGlobal
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
RevokeDragDrop
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
CoTaskMemFree
CoCreateGuid
CoInitialize
CoUninitialize
CoRegisterMessageFilter
CoRevokeClassObject

oleaut32

VariantInit
VariantCopy
VariantChangeType
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
VarBstrFromDate
OleCreateFontIndirect
VariantClear
SysAllocStringLen
SysAllocString
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdipDrawImageI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipFree
GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdiplusStartup
GdiplusShutdown
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette

ws2_32

gethostname
getaddrinfo
freeaddrinfo
ioctlsocket
listen
accept
recvfrom
sendto
send
select
__WSAFDIsSet
getpeername
WSAIoctl
connect
WSAGetLastError
htons
ntohs
getsockname
setsockopt
recv
bind
socket
WSASetLastError
closesocket
getsockopt
WSAStartup
WSACleanup

wininet

InternetCanonicalizeUrlA
HttpQueryInfoA
InternetConnectA
InternetCrackUrlA
InternetReadFile
HttpOpenRequestA
HttpAddRequestHeadersA
InternetSetStatusCallback
HttpSendRequestA
InternetOpenA
InternetCloseHandle
InternetQueryOptionA
InternetSetOptionA

winmm

PlaySoundW

wldap32

ord200
ord32
ord35
ord60
ord22
ord79
ord33
ord27
ord301
ord211
ord46
ord50
ord143
ord41
ord30
ord26

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 401KB - Virtual size: 401KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3827cd65d0056aa19c39b7a9de918d68

Code Sign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9dCertificate

Extended Key Usages

Key Usages

59:9e:fe:3d:d8:d5:ea:5e:c1:5b:f1:c7Certificate

Extended Key Usages

Key Usages

22:eb:d6:87:2a:1f:93:74:4f:cb:35:47:ee:fd:3c:06:40:89:a9:67Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

ws2_32

wininet

winmm

wldap32

oleacc

imm32

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rdata Size: 401KB - Virtual size: 401KB

.data Size: 36KB - Virtual size: 115KB

.rsrc Size: 1.8MB - Virtual size: 1.8MB

.reloc Size: 216KB - Virtual size: 216KB

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

59:9e:fe:3d:d8:d5:ea:5e:c1:5b:f1:c7
Certificate

22:eb:d6:87:2a:1f:93:74:4f:cb:35:47:ee:fd:3c:06:40:89:a9:67
Signer

.text
Size: 1.9MB - Virtual size: 1.9MB

.rdata
Size: 401KB - Virtual size: 401KB

.data
Size: 36KB - Virtual size: 115KB

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

.reloc
Size: 216KB - Virtual size: 216KB