be1845ea8342008046c36b48e5b0c530_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

be1845ea8342008046c36b48e5b0c530_JC.exe
Size

1.1MB
MD5

be1845ea8342008046c36b48e5b0c530
SHA1

2281017fb2d4b3735ab2a6d7d837f5f9c3c8c47c
SHA256

edc7b98afa8508d04c30658488c4372428594c45dbc249596bfe6d041829f8ff
SHA512

1f0f649a76fc78d46e65374019f2b68288052e7765549c45275945758d5728719f6d55e0af23927e02dfd5cfd13de43823c9d5025defd7e6f4d30961e0c188fa
SSDEEP

3072:UWa30PQvbuPPLH1YaewpI51iJ3VsWMoPv95MbspBT4hqr3TeBmAOhHPz59kWBkI2:UWa5uPPLH1XeC6Wb93Mw36kLhL4Wukw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be1845ea8342008046c36b48e5b0c530_JC.exe

Files

be1845ea8342008046c36b48e5b0c530_JC.exe
.exe windows:5 windows x86

e5c11daa24dc8b401ea8c36bae96968d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetStdHandle
HeapSize
HeapReAlloc
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FlushFileBuffers
WriteConsoleW
GetModuleHandleA
GetTickCount
DuplicateHandle
GetProcessHeap
Sleep
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
FindClose
GetFileType
LCMapStringW
GetStringTypeW
HeapAlloc
HeapFree
GetACP
WriteFile
GetStdHandle
WideCharToMultiByte
MultiByteToWideChar
GetModuleFileNameA
GetModuleHandleExW
ExitProcess
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
CreateFileW
EnterCriticalSection
SetLastError
RtlUnwind
RaiseException
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CloseHandle
GetLastError
GetCurrentProcess
GetProcAddress
VirtualProtect

shell32

DragQueryFileA
SHChangeNotify
DragAcceptFiles
SHGetFolderPathA
SHGetFileInfoA
SHGetFolderPathW

ole32

OleFlushClipboard
CoCreateGuid
OleInitialize
ReleaseStgMedium
RegisterDragDrop

gdi32

CreateHatchBrush
GetDIBits
CreateDCW
CreateCompatibleDC
GetCharacterPlacementA
GetOutlineTextMetricsW
GetPolyFillMode
CreateFontA
AddFontResourceA
GetBoundsRect
GetCharacterPlacementW
CreateBitmap
GetObjectW
GetFontData
CreateColorSpaceA
GetCurrentObject
BitBlt
GetPath
CreateScalableFontResourceW
CreateFontIndirectW
CreateRectRgn
CancelDC
CreateFontW
CreatePen
GetObjectType
GetColorSpace
CreateFontIndirectExA
CreateEllipticRgn
CreateDIBitmap
CreateFontIndirectExW
GetBitmapBits
CreateDiscardableBitmap
GetGlyphIndicesW
AnimatePalette
CreateDCA
CreatePalette
CreateSolidBrush
DeleteDC
ChoosePixelFormat
CreateDIBPatternBrushPt
GetPixelFormat
GetClipRgn
GetDeviceCaps

user32

GetMenuDefaultItem
EnumDisplayMonitors
CreateWindowExW
FlashWindow
OemToCharBuffA
DefDlgProcA
GetCursor
GetLastActivePopup
FindWindowA
RegisterClipboardFormatA
GetNextDlgTabItem
SendMessageA
EqualRect
InsertMenuItemA
GetPropA
CharNextA
EndPaint
GetWindowLongA
GetClientRect
CreateDialogIndirectParamA
SetDlgItemInt
SetDlgItemTextA
DeferWindowPos
IsWindowVisible
IsDialogMessageA
ReleaseDC
wsprintfA
GetDC
PtInRect
LoadStringW
InSendMessage
DrawIconEx
DrawTextExA
SetTimer
GetWindowTextA
GetCursorPos
GetSysColor
CreatePopupMenu
IsIconic
SetDlgItemTextW
SendMessageW
GetDlgItemTextW
GetSystemMenu
DialogBoxParamW
CreateDialogParamA
PostMessageA
EndDeferWindowPos
SetRectEmpty
SetRect
CharLowerA
SetMenu
GetClassInfoW
CharPrevA
RemoveMenu
CharUpperA
LoadImageA
MonitorFromWindow
GetWindowTextLengthA
BeginDeferWindowPos
GetDlgItem
CloseWindow
TranslateMessage
MonitorFromRect
DispatchMessageA
GetDlgItemInt
GetKeyNameTextA
GetMessagePos
GetMonitorInfoA
MessageBoxW
PeekMessageW
DestroyMenu
DispatchMessageW
DrawFocusRect

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 999KB - Virtual size: 1003KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5c11daa24dc8b401ea8c36bae96968d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shell32

ole32

gdi32

user32

advapi32

Sections

.text Size: 97KB - Virtual size: 96KB

.rdata Size: 30KB - Virtual size: 30KB

.data Size: 999KB - Virtual size: 1003KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 97KB - Virtual size: 96KB

.rdata
Size: 30KB - Virtual size: 30KB

.data
Size: 999KB - Virtual size: 1003KB

.reloc
Size: 5KB - Virtual size: 5KB