aece178ed4817216392bdbdb1ba79470exe_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

aece178ed4817216392bdbdb1ba79470exe_JC.exe
Size

740KB
MD5

aece178ed4817216392bdbdb1ba79470
SHA1

808b4816221582e19de1df3a81bd599f7e54b355
SHA256

2d062247ebe53b2de2d468e8c9ad020053a0a30db8099cc2cdd7c41b374361a9
SHA512

1cf3a03a999d876deae108176068b942e2923dbdf8f950342dbfd9fc3d143a17a685cccb2e976c0c0c12e106fa36deeb8f7504925edc873a1e368535cc4b5aef
SSDEEP

12288:1zSeP27NKPxbgX2ndvQ8dCLMjUPApVvqgduuQMPEzDtQDKDz0JQf/Cxo5Jq+:1zSmwuQ2ndfdCQjeAHpJ6GD8z0J2Cv+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aece178ed4817216392bdbdb1ba79470exe_JC.exe

Files

aece178ed4817216392bdbdb1ba79470exe_JC.exe
.exe windows:4 windows x86

e1ac904e1f558a95b99ee9acb7b8fab8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawCaption
DdeUninitialize
DefWindowProcA
DdeGetLastError
MessageBoxW
ShowWindow
DdeCreateStringHandleW
DestroyCaret
GetKeyNameTextW
CharToOemA
ShowScrollBar
LoadIconA
GetWindowTextLengthW
DefFrameProcW
GetWindowTextW
GetWindowThreadProcessId
DdeInitializeA
SetClassLongW
ChangeMenuW
GetForegroundWindow
DdeInitializeW
OemToCharBuffA
RegisterClassA
GetWindowWord
CreateWindowExA
GetClipboardData
GetDialogBaseUnits
DrawIconEx
DdeClientTransaction
SetParent
DdeAccessData
ScrollWindowEx
DestroyWindow
GetSystemMenu
RegisterClassExA

kernel32

GetStringTypeExW
GetCommandLineW
LocalFileTimeToFileTime
QueryPerformanceCounter
GetConsoleMode
HeapCreate
GetProcessHeap
CreateMailslotA
GetCommandLineA
GetModuleFileNameA
LeaveCriticalSection
LoadLibraryA
GetLastError
FreeEnvironmentStringsW
WriteFile
GetConsoleOutputCP
GetNamedPipeHandleStateA
InterlockedExchange
GetStdHandle
SetPriorityClass
LCMapStringA
CreateFileA
GetFileAttributesA
GetSystemTimeAsFileTime
GetStringTypeExA
HeapReAlloc
InterlockedIncrement
RtlUnwind
WriteConsoleW
GetPriorityClass
LoadLibraryExW
TlsSetValue
ReleaseMutex
FindFirstFileA
SetFilePointer
MoveFileExW
GetStringTypeA
IsValidLocale
IsDebuggerPresent
SetConsoleScreenBufferSize
VirtualAlloc
SetThreadAffinityMask
GetStartupInfoA
lstrcmpi
HeapAlloc
InterlockedCompareExchange
CreateFileW
TlsAlloc
SetEnvironmentVariableA
GetPrivateProfileSectionNamesW
InitializeCriticalSection
EnterCriticalSection
TlsFree
GetConsoleCP
TryEnterCriticalSection
GetCurrentDirectoryW
Sleep
GetCalendarInfoA
GetCurrentThreadId
SetUnhandledExceptionFilter
lstrcpy
SetHandleCount
GetFullPathNameA
VirtualQuery
TlsGetValue
GetStringTypeW
SetEvent
GetDateFormatA
GetACP
GetLocaleInfoA
VirtualUnlock
GetThreadLocale
GetOEMCP
FreeLibrary
GetModuleFileNameW
GetConsoleTitleW
SetConsoleCursorInfo
SetConsoleCtrlHandler
GetCurrentProcess
GetEnvironmentStringsW
CreateThread
LCMapStringW
WriteConsoleA
UnhandledExceptionFilter
EnumSystemLocalesA
GetProcAddress
GetCurrentProcessId
EnumResourceTypesW
VirtualQueryEx
GetStartupInfoW
GetCPInfo
GetTimeFormatA
GetProcessShutdownParameters
CreateMutexA
GlobalGetAtomNameW
InterlockedDecrement
CompareStringA
EnumTimeFormatsA
ExitProcess
LocalShrink
SetConsoleWindowInfo
GetTimeZoneInformation
WideCharToMultiByte
GetTickCount
GetNumberFormatA
DebugBreak
TerminateProcess
FormatMessageW
OpenMutexA
GetProcAddress
DosDateTimeToFileTime
SetStdHandle
GetFileType
DeleteCriticalSection
CreateSemaphoreW
GetSystemDefaultLangID
ResetEvent
HeapSize
WaitForMultipleObjectsEx
ReadConsoleA
ReadFileEx
VirtualFree
GetEnvironmentStrings
HeapFree
GetTempFileNameA
ReadFile
WriteConsoleOutputCharacterW
GetVersionExA
FlushFileBuffers
GetCurrentThread
RtlFillMemory
WritePrivateProfileSectionA
TransmitCommChar
SleepEx
FoldStringW
FreeEnvironmentStringsA
GetModuleHandleA
CreateDirectoryExW
GetCompressedFileSizeA
SetLastError
MultiByteToWideChar
lstrcmpW
IsValidCodePage
CompareStringW
FormatMessageA
GetLocaleInfoW
CloseHandle
GetDriveTypeA
GetUserDefaultLCID
HeapDestroy
MapViewOfFileEx

comctl32

ImageList_DragShowNolock
ImageList_SetImageCount
_TrackMouseEvent
ImageList_GetIcon
ImageList_DragEnter
DestroyPropertySheetPage
InitCommonControlsEx

Sections

.text
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 460KB - Virtual size: 456KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e1ac904e1f558a95b99ee9acb7b8fab8

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 104KB - Virtual size: 100KB

.rdata Size: 460KB - Virtual size: 456KB

.data Size: 140KB - Virtual size: 166KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 104KB - Virtual size: 100KB

.rdata
Size: 460KB - Virtual size: 456KB

.data
Size: 140KB - Virtual size: 166KB

.rsrc
Size: 32KB - Virtual size: 28KB