40417b7f85176d01898329bc7c9764df6c5bad1d0482ce5e1a02be8b9566c4e0dll_JC[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

40417b7f85176d01898329bc7c9764df6c5bad1d0482ce5e1a02be8b9566c4e0dll_JC.dll
Size

42KB
MD5

34b3a4f2ee20a812d9b0f36f55bce2fc
SHA1

129ea7620356c07e8ee3f521688b462c483ef968
SHA256

40417b7f85176d01898329bc7c9764df6c5bad1d0482ce5e1a02be8b9566c4e0
SHA512

a84fd450072d651d9029d90cfcde14b28a8be8912e3c480397b62dfb04e2dd08ffdcf9ce2a778c02ffc375952ad2eaccd7473f16304ed5ac5626ca6b5de6bda8
SSDEEP

768:JgRrHd0nO3hgdpADvbY/qEmdiBfPrW6NKyBPIcxfHSw60u:JcinR6DHu7r5xvSb0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40417b7f85176d01898329bc7c9764df6c5bad1d0482ce5e1a02be8b9566c4e0dll_JC.dll

Files

40417b7f85176d01898329bc7c9764df6c5bad1d0482ce5e1a02be8b9566c4e0dll_JC.dll
.dll windows x86

13d1fc252e906743b9183192cc634e7d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

PathCompactPathExA
UrlIsNoHistoryA
PathCompactPathExW
StrFromTimeIntervalA
PathIsURLW

kernel32

SetFilePointerEx
SetStdHandle
GetConsoleMode
AddConsoleAliasA
CreateDirectoryExW
FindResourceW
SetThreadIdealProcessor
VirtualAlloc
GetConsoleCP
FlushFileBuffers
InitOnceExecuteOnce
GetFileType
LCMapStringEx
LoadLibraryW
OutputDebugStringW
GetStringTypeW
WriteConsoleW
RtlUnwind
HeapAlloc
LoadLibraryExW
GetModuleFileNameW
WriteFile
GetStdHandle
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
Sleep
MultiByteToWideChar
GetModuleHandleExW
ExitProcess
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
CloseHandle
GetProcAddress
GetModuleHandleW
GetStartupInfoW
TerminateProcess
WideCharToMultiByte
IsProcessorFeaturePresent
GetCurrentProcess
GetLastError
HeapFree
CreateFileW
IsDebuggerPresent
EncodePointer
DecodePointer
SetLastError
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlsGetValue
FlsSetValue

rtm

RtmDeregisterClient
RtmGetFirstRoute
RtmCreateEnumerationHandle
MgmTakeInterfaceOwnership
MgmDeRegisterMProtocol

winmm

CloseDriver
midiOutGetID
mmioRenameW
waveInGetNumDevs
SendDriverMessage
DriverCallback

mpr

MultinetGetConnectionPerformanceA
WNetGetUserA
WNetUseConnectionA
WNetCancelConnectionA
WNetAddConnection2A

wsock32

ord1102
WSAAsyncGetHostByAddr
ord1101
ord1114

msi

ord89
ord154
ord126
ord56
ord118
ord31
ord129

ole32

OleGetIconOfFile
CreateGenericComposite
HPALETTE_UserSize
IIDFromString
GetConvertStg
GetDocumentBitStg
CreateStreamOnHGlobal
OpenOrCreateStream

avifil32

AVIFileEndRecord
AVIStreamGetFrame

msvfw32

MCIWndCreateA
DrawDibRealize
DrawDibStart
ICClose

Exports

Exports

HvTkcoed

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13d1fc252e906743b9183192cc634e7d

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

rtm

winmm

mpr

wsock32

msi

ole32

avifil32

msvfw32

Exports

Exports

Sections

.text Size: 19KB - Virtual size: 19KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 9KB - Virtual size: 16KB

.rsrc Size: 512B - Virtual size: 480B

.text
Size: 19KB - Virtual size: 19KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 9KB - Virtual size: 16KB

.rsrc
Size: 512B - Virtual size: 480B