d5fe2bfcda64334d84585003b4441081fe99b6352caa5e61ad25bc0dd80ef63f_JC[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

d5fe2bfcda64334d84585003b4441081fe99b6352caa5e61ad25bc0dd80ef63f_JC.dll
Size

2.4MB
MD5

34a16a973ebc6f7cf89b067d6ae83a9e
SHA1

c252c1ad954e5986c8dcccedc15b081c1087591c
SHA256

d5fe2bfcda64334d84585003b4441081fe99b6352caa5e61ad25bc0dd80ef63f
SHA512

d81cd55659910a83471159865d76e7c5bd2246632b42d40581620033e79444880530a6546a178cbc314665ae428f03aa6fd7b1a6d7c96f66baaa521522850878
SSDEEP

49152:D3OGSpmySo/Xm20Hv65JgXS6KMW9E5RBnFv2GC95o670osPn:D+Go1Qy7gCd9E1Fjs5d5Wn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5fe2bfcda64334d84585003b4441081fe99b6352caa5e61ad25bc0dd80ef63f_JC.dll

Files

d5fe2bfcda64334d84585003b4441081fe99b6352caa5e61ad25bc0dd80ef63f_JC.dll
.dll windows x86

407dfb5861a08885388865accaffefb4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

oleaut32

CreateStdDispatch
SysAllocStringLen
GetRecordInfoFromGuids

wininet

InternetCrackUrlW

lz32

LZCopy

setupapi

CM_Get_Next_Res_Des_Ex
SetupOpenMasterInf

shlwapi

StrStrW

winmm

PlaySoundW

user32

ShowWindow
PostQuitMessage
ActivateKeyboardLayout

kernel32

CloseHandle
GetModuleFileNameA
GetProcAddress
GetModuleHandleW
OutputDebugStringA
InterlockedPushEntrySList
GetExitCodeProcess
IsProcessorFeaturePresent
DeleteCriticalSection
WaitForSingleObject
GetProcessHeap

version

VerQueryValueA
VerFindFileW

advapi32

SetSecurityDescriptorSacl

gdi32

SetTextJustification
CreatePolyPolygonRgn

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 164KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

407dfb5861a08885388865accaffefb4

Headers

DLL Characteristics

File Characteristics

Imports

oleaut32

wininet

lz32

setupapi

shlwapi

winmm

user32

kernel32

version

advapi32

gdi32

Sections

.text Size: 36KB - Virtual size: 32KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 164KB - Virtual size: 167KB

CODE Size: 1.1MB - Virtual size: 1.1MB

.CRT Size: 1.1MB - Virtual size: 1.1MB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 48KB - Virtual size: 47KB

.text
Size: 36KB - Virtual size: 32KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 164KB - Virtual size: 167KB

CODE
Size: 1.1MB - Virtual size: 1.1MB

.CRT
Size: 1.1MB - Virtual size: 1.1MB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 48KB - Virtual size: 47KB