818d7a37a915206c760ff990974cbc0138dca2f39d38c3b51f2050f40959d20e_JC[.]dll

General

Target

818d7a37a915206c760ff990974cbc0138dca2f39d38c3b51f2050f40959d20e_JC.dll
Size

64KB
MD5

41b73532e032edc10a1aa2ad6b992225
SHA1

72de082e890b0a53b3976af83e1ea7a9be86b2cb
SHA256

818d7a37a915206c760ff990974cbc0138dca2f39d38c3b51f2050f40959d20e
SHA512

d13464606d2b0e9b19423e5e39f05c41106324d87f8cfa4f51ed313eaa2f30af2e0956e56b7517457d591026891934ed5844f9045beaf43f5b32f4072b638b5e
SSDEEP

768:vn0THoAfp+0be09W6kF/bkTO2cM1cmTchorNG1RMdwcKYSj97VlW6d0VSCB:v0THosvNRFy4cmTc2G1RMpKF73GV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
818d7a37a915206c760ff990974cbc0138dca2f39d38c3b51f2050f40959d20e_JC.dll

Files

818d7a37a915206c760ff990974cbc0138dca2f39d38c3b51f2050f40959d20e_JC.dll
.dll windows:4 windows x86

bdc1ddee8a0a5b8cfce37a52cc564184

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindFirstFileA
ReadFile
FindClose
LockResource
SizeofResource
LoadResource
FindResourceA
ReadProcessMemory
GetCommandLineA
OpenProcess
TerminateProcess
Process32Next
OutputDebugStringA
Process32First
CreateToolhelp32Snapshot
FindNextFileA
Module32Next
Module32First
GetCurrentProcess
GetProcAddress
LoadLibraryA
LoadLibraryExA
SetErrorMode
SetFileAttributesA
VirtualQuery
ExitProcess
FreeLibrary
GetVersion
CreateFileA
CloseHandle
GetFileAttributesA
GetSystemDirectoryA
CreateProcessA
GetModuleFileNameA
GetShortPathNameA
GetLastError
MoveFileExA
GetTickCount
Sleep
DeleteFileA
MoveFileA
GetWindowsDirectoryA
GetVersionExA
lstrcatA
CopyFileA

use

CharNextA
CharUpperA
CharLowerA

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bdc1ddee8a0a5b8cfce37a52cc564184

Headers

File Characteristics

Imports

kernel32

use

Sections

.text Size: 44KB - Virtual size: 42KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 19KB

.rsrc Size: 60KB - Virtual size: 59KB

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 60KB - Virtual size: 59KB

.reloc
Size: 8KB - Virtual size: 5KB