4624df7f5fbf5cexeexe_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

4624df7f5fbf5cexeexe_JC.exe
Size

34.9MB
MD5

4624df7f5fbf5c0133f777d8c6732864
SHA1

4a92bbeae541abbc460bdd6eb4dce207f01cfb5e
SHA256

5b5f0b6d45e84aff70945918e8c6e4e352de1ac28f4619facefec207184f9892
SHA512

e3df0f88fc3a8b6b94739c4992381391791458146dc350933ffca54937cc97917b3af7adacdcb488debc2851c84db61f304a0a1820cbf395fad79509190034b7
SSDEEP

786432:/9nGpdhL18fT+64BxYO/eITtxyFuweTJHUwfseQeXtTpvluxiFm/0HB/IlbEw:cpubTkLTTI9wUleXtTptrQ0H8Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4624df7f5fbf5cexeexe_JC.exe

Files

4624df7f5fbf5cexeexe_JC.exe
.exe windows x86

716fedf2a5e6cd7b62ba32bc60e343e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
LockResource
GetModuleFileNameA
FindNextFileA
GetModuleHandleA
CreateToolhelp32Snapshot
GetCurrentThreadId
LocalFree
DeleteFileA
CreateThread
SetEndOfFile
CreateFileW
WriteConsoleW
SetStdHandle
Process32Next
HeapReAlloc
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
IsValidCodePage
GetOEMCP
GetACP
HeapSize
GetLocaleInfoW
GetStringTypeW
GetSystemTimeAsFileTime
GetCurrentProcessId
LoadLibraryA
FindClose
CopyFileA
RemoveDirectoryA
lstrcmpiA
GetProcAddress
FindFirstFileA
ReadFile
TerminateProcess
SizeofResource
Sleep
OpenProcess
WriteFile
Process32First
SetFilePointerEx
GetCurrentProcess
LoadResource
lstrlenA
FindResourceA
CreateFileA
LoadLibraryW
ExitProcess
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
MultiByteToWideChar
EncodePointer
DecodePointer
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
HeapFree
GetCommandLineA
HeapSetInformation
GetStartupInfoW
GetCPInfo
RaiseException
RtlUnwind
HeapAlloc
LCMapStringW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
IsProcessorFeaturePresent
HeapCreate
GetModuleHandleW
SetFilePointer
GetConsoleCP
GetConsoleMode
FlushFileBuffers
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
CloseHandle
GetModuleFileNameW
GetProcessHeap

user32

MoveWindow
GetWindowRect
GetWindowDC
GetParent
LoadIconA
CallNextHookEx
DrawIcon
GetDC
GetForegroundWindow
SetWindowLongA
MessageBoxA
SetWindowsHookExA
GetDesktopWindow
GetCursorPos
UnhookWindowsHookEx
SystemParametersInfoA
GetSystemMetrics
LoadImageA
MapWindowPoints

gdi32

StretchBlt
DeleteObject
SelectObject
CreateCompatibleDC
BitBlt

advapi32

RegCloseKey
RegOpenKeyA
RegEnumValueA
RegDeleteValueA
CryptGenRandom
RegOpenKeyExA
CryptAcquireContextA
RegCreateKeyExA
RegEnumKeyExA
RegOpenKeyW
RegSetValueExA

shell32

ShellExecuteA

winmm

PlaySoundA

Sections

.text
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34.7MB - Virtual size: 34.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

716fedf2a5e6cd7b62ba32bc60e343e0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

winmm

Sections

.text Size: 111KB - Virtual size: 110KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 6KB - Virtual size: 14KB

.rsrc Size: 34.7MB - Virtual size: 34.7MB

.reloc Size: 54KB - Virtual size: 53KB

.text
Size: 111KB - Virtual size: 110KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 6KB - Virtual size: 14KB

.rsrc
Size: 34.7MB - Virtual size: 34.7MB

.reloc
Size: 54KB - Virtual size: 53KB