NA_08f82534e42298exe_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

NA_08f82534e42298exe_JC.exe
Size

476KB
MD5

08f82534e422989441c3dac359a6133b
SHA1

fd821af2e2a83577e52e59f62c551615988275c9
SHA256

7932e21de7c9192dcacfd0e3f704657f1290fc35b7f3218f8be728b76f6b1c05
SHA512

b14755e413efc81669f6ddb031d2433dcca2035f303ad7720f0311597190172089f977196ad287dcfc420f945d618559df2e6ea4e407d75e4f12ecf1b305bcd5
SSDEEP

12288:rDYx13FW4nvsIOo6sAVtcIg345AZLUf33h+G/HR9lOil94ayyJqn6pTfdkui3:vCFlRctzkLU33h+k9943e+6pTS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NA_08f82534e42298exe_JC.exe

Files

NA_08f82534e42298exe_JC.exe
.exe windows x86

c07e762a5e17fc052dc260ac5ebce405

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemInfo
VirtualQuery
ExitProcess
ExitThread
CreateThread
GetTimeFormatA
GetDateFormatA
GetSystemTimeAsFileTime
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapReAlloc
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
QueryPerformanceCounter
LCMapStringA
LCMapStringW
VirtualAlloc
GetStringTypeW
GetTimeZoneInformation
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
SetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsBadReadPtr
IsBadCodePtr
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetLocaleInfoW
SetEnvironmentVariableA
VirtualProtect
HeapFree
HeapAlloc
RtlUnwind
SetErrorMode
GetFileTime
FileTimeToLocalFileTime
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
UnlockFile
LockFile
FlushFileBuffers
GetOEMCP
GetCPInfo
FileTimeToSystemTime
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GlobalFlags
GetCurrentThread
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
InterlockedDecrement
InterlockedIncrement
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
LoadLibraryA
FreeLibrary
lstrcatA
lstrcmpW
GetProcAddress
SetLastError
GlobalAlloc
FormatMessageA
lstrcpynA
LocalFree
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
CreateProcessA
SetEndOfFile
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
ReadFile
MoveFileA
WaitForMultipleObjects
SetFileAttributesA
CreateFileA
GetFileSize
SetFilePointer
WriteFile
CreateEventA
CloseHandle
SetEvent
WaitForSingleObject
CreateDirectoryA
GetFileAttributesA
GetModuleFileNameA
FindFirstFileA
DeleteFileA
FindClose
FindResourceExA
GetFullPathNameA
GetModuleHandleA
GetTickCount
Sleep
GetCurrentProcessId
MulDiv
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
GetLastError
RaiseException
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetStringTypeA
InterlockedExchange
GetProcessHeap

user32

GetClassNameA
SetPropA
GetPropA
RemovePropA
IsChild
GetForegroundWindow
GetLastActivePopup
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
MessageBoxA
GetKeyState
IsWindowVisible
UpdateWindow
GetMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
CallWindowProcA
IntersectRect
GetWindowPlacement
GetFocus
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
GetWindowTextLengthA
GetWindowTextA
GetWindow
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetNextDlgGroupItem
GetActiveWindow
CreateDialogIndirectParamA
IsWindow
IsWindowEnabled
GetParent
EndDialog
wsprintfA
GetSysColor
MoveWindow
SetCapture
ReleaseCapture
SystemParametersInfoA
SetTimer
SetCursor
GetCursorPos
ScreenToClient
PtInRect
OffsetRect
EqualRect
FrameRect
InflateRect
SetWindowRgn
KillTimer
LoadCursorA
IsRectEmpty
SetRectEmpty
CopyRect
LoadImageA
CreateWindowExA
SetWindowLongA
GetWindowLongA
DefWindowProcA
PeekMessageA
TranslateMessage
DispatchMessageA
LoadAcceleratorsA
DestroyWindow
InvalidateRgn
CopyAcceleratorTableA
SetRect
ClientToScreen
DestroyMenu
GetSysColorBrush
SetWindowContextHelpId
TranslateAcceleratorA
GetDesktopWindow
SetActiveWindow
SetForegroundWindow
SetWindowPos
OpenIcon
UnregisterClassA
GetSystemMetrics
LoadIconA
InvalidateRect
GetUpdateRect
IsIconic
PostMessageA
DrawIcon
PostThreadMessageA
CharUpperA
EnableWindow
GetDlgItem
ShowWindow
SetFocus
GetDC
SendMessageA
ReleaseDC
GetClientRect
GetWindowRect
RegisterClipboardFormatA
GetNextDlgTabItem
MessageBeep
MapDialogRect
GetMessageA
ValidateRect
PostQuitMessage
EndPaint
BeginPaint
GetWindowDC
GetClassInfoExA
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
CharNextA
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
RegisterWindowMessageA
WinHelpA
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA

gdi32

CreateBitmap
GetBkColor
GetTextColor
SaveDC
RestoreDC
SetBkMode
SetMapMode
GetViewportExtEx
GetWindowExtEx
PtVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetBkColor
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreateRectRgnIndirect
GetMapMode
GetRgnBox
SetTextColor
GetClipBox
SelectClipRgn
CreateRectRgn
FrameRgn
CreateRoundRectRgn
CreatePolygonRgn
GetStockObject
GetObjectA
CreateBrushIndirect
RectVisible
SetDIBitsToDevice
StretchDIBits
GetDIBits
CreateCompatibleDC
GetDeviceCaps
CreateDIBSection
DeleteObject
DeleteDC
BitBlt
CreateSolidBrush
GetTextExtentPoint32A
SelectObject

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegOpenKeyA
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCloseKey

shell32

ShellExecuteA

comctl32

ord17

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoRevokeClassObject
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard

oleaut32

SysFreeString
SysAllocStringByteLen
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
OleCreateFontIndirect
VariantCopy
SafeArrayDestroy
SystemTimeToVariantTime
SysAllocString
SysStringLen

ws2_32

WSACleanup
WSAStartup
htonl
bind
listen
sendto
WSACreateEvent
WSAEventSelect
gethostbyname
WSACloseEvent
accept
send
recv
shutdown
inet_addr
WSAEnumNetworkEvents
socket
htons
connect
WSAGetLastError
ioctlsocket
WSAAsyncSelect
setsockopt
closesocket

wininet

InternetOpenUrlA
InternetOpenA
InternetCrackUrlA
InternetConnectA
InternetSetStatusCallback
InternetCloseHandle
HttpOpenRequestA
HttpSendRequestA
HttpQueryInfoA
InternetReadFile
InternetSetOptionA

Sections

.text
Size: 320KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.x4uth
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c07e762a5e17fc052dc260ac5ebce405

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

wininet

Sections

.text Size: 320KB - Virtual size: 316KB

.rdata Size: 100KB - Virtual size: 97KB

.data Size: 12KB - Virtual size: 24KB

.rsrc Size: 36KB - Virtual size: 33KB

.x4uth Size: 4KB - Virtual size: 4KB

.text
Size: 320KB - Virtual size: 316KB

.rdata
Size: 100KB - Virtual size: 97KB

.data
Size: 12KB - Virtual size: 24KB

.rsrc
Size: 36KB - Virtual size: 33KB

.x4uth
Size: 4KB - Virtual size: 4KB