077a7e9148d8dbe8a79e011864ec3300_exe32_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

077a7e9148d8dbe8a79e011864ec3300_exe32_JC.exe
Size

428KB
MD5

077a7e9148d8dbe8a79e011864ec3300
SHA1

fd08e5597802cd54847f383f497fabea9145e5b5
SHA256

cd90531679ab5b52c5e132e55cec2aa9d40f823a0649f3bed4a90d68d0e6a3dc
SHA512

86163452dd4277be239d1ce32abd6056096e53cbbc50f1312d006a4f8393a23223138b2c81b1cc3d3b0144de20222de78073478e2c927068060e449f488d5a9e
SSDEEP

6144:S8au2e2HuxLyj/SL6afR4ywrBAOLK5NjGVTWlTR:SHu2fHu5uhIPG6pGMlN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
077a7e9148d8dbe8a79e011864ec3300_exe32_JC.exe

Files

077a7e9148d8dbe8a79e011864ec3300_exe32_JC.exe
.exe windows:5 windows x86

c1d11acb1ccccedc6d92a1610a26e2aa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList
CM_Get_DevNode_Status
SetupDiEnumDeviceInfo

kernel32

GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
Sleep
WaitForSingleObject
LocalAlloc
IsDBCSLeadByte
GetFileSizeEx
SetEndOfFile
InterlockedIncrement
GetModuleFileNameA
CreateEventA
ExitProcess
FreeLibrary
LoadLibraryExA
GetDiskFreeSpaceExA
GetTempPathA
MoveFileA
DeleteFileA
GetVersionExA
LoadLibraryA
TerminateProcess
Process32Next
OpenProcess
GetCurrentProcessId
Process32First
CreateToolhelp32Snapshot
GetComputerNameA
FindNextFileA
CopyFileA
FindFirstFileA
CreateDirectoryA
OpenEventA
SetEvent
GetLocaleInfoA
ResumeThread
CreateMutexA
SuspendThread
CreateThread
GlobalMemoryStatusEx
SetThreadPriority
GetTempFileNameA
GetWindowsDirectoryA
TerminateThread
WaitForMultipleObjects
ResetEvent
GetModuleHandleW
GetFileSize
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetLocaleInfoW
InitializeCriticalSectionAndSpinCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeZoneInformation
GetStdHandle
HeapCreate
LCMapStringW
LCMapStringA
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetStartupInfoA
GetDateFormatA
GetTimeFormatA
VirtualQuery
GetSystemInfo
VirtualProtect
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemTimeAsFileTime
RtlUnwind
HeapSize
HeapReAlloc
SetFilePointer
WriteFile
ReadFile
CreateFileA
lstrcmpiA
lstrlenA
GetModuleHandleA
GetProcAddress
CloseHandle
DeleteCriticalSection
InitializeCriticalSection
GetLastError
lstrlenW
MultiByteToWideChar
GetTickCount
IsProcessorFeaturePresent
SetLastError
InterlockedDecrement
GetCurrentThreadId
FormatMessageA
WideCharToMultiByte
GetCurrentProcess
FlushInstructionCache
FindResourceExA
FindResourceA
LoadResource
LockResource
SizeofResource
LeaveCriticalSection
EnterCriticalSection
RaiseException
LocalFree
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapAlloc
GetProcessHeap
HeapFree
GetCommandLineA
HeapDestroy
VirtualAlloc
VirtualFree
InterlockedCompareExchange

user32

ScreenToClient
GetDC
ReleaseDC
GetClientRect
SetWindowLongA
SetWindowTextA
ShowWindow
GetDlgItem
IsWindow
SendMessageA
LoadIconA
DestroyIcon
GetWindowRect
DispatchMessageA
TranslateMessage
PeekMessageA
GetDesktopWindow
CharNextA
SetWindowPos
DefWindowProcA
PostMessageA
DestroyWindow
SetTimer
KillTimer
GetWindowLongA
UnregisterClassA
GetMessageA
CreateWindowExA
RegisterClassA
MessageBoxA
SetFocus
PostQuitMessage
CharUpperA
CharNextW
PostThreadMessageA
CreateDialogParamA
GetMonitorInfoA
LoadStringA
FindWindowA
MonitorFromRect
FillRect
SystemParametersInfoA
EnableWindow
EndDialog
GetSysColorBrush
MoveWindow

advapi32

GetSecurityDescriptorGroup
AllocateAndInitializeSid
AddAccessAllowedAce
IsValidAcl
IsValidSecurityDescriptor
GetAce
SetSecurityDescriptorGroup
RegEnumKeyA
GetUserNameA
LookupAccountSidA
GetTokenInformation
GetSidLengthRequired
InitializeSid
GetSidSubAuthority
SetSecurityDescriptorDacl
SetSecurityDescriptorOwner
CopySid
IsValidSid
GetLengthSid
RegEnumKeyExA
OpenProcessToken
GetSecurityDescriptorLength
MakeSelfRelativeSD
InitializeSecurityDescriptor
GetSecurityDescriptorOwner
GetSecurityDescriptorDacl
GetSecurityDescriptorSacl
MakeAbsoluteSD
GetSecurityDescriptorControl
GetAclInformation
InitializeAcl
AddAce
RegQueryInfoKeyA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA

shell32

SHGetFolderPathA

ole32

CoUninitialize
CoCreateInstance
CoTaskMemFree
CoTaskMemRealloc
CoInitialize
CoTaskMemAlloc
StringFromGUID2
CLSIDFromProgID
CLSIDFromString
CoRevokeClassObject
CoRegisterClassObject

oleaut32

GetErrorInfo
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
LoadRegTypeLi
VarUI4FromStr
SysAllocString
SysFreeString
VariantClear
SysStringLen
VarBstrCat
VarBstrCmp
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen

shlwapi

SHCreateStreamOnFileEx
PathFileExistsA

userenv

UnloadUserProfile

gdiplus

GdipBitmapUnlockBits
GdipAlloc
GdipDisposeImage
GdipSaveImageToFile
GdipGetImageWidth
GdipGetImageHeight
GdipGetImageThumbnail
GdipDrawImageRectI
GdipCreateFromHDC
GdipLoadImageFromStream
GdipLoadImageFromFile
GdipDeleteGraphics
GdiplusStartup
GdiplusShutdown
GdipCloneImage
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipGetImageHorizontalResolution
GdipBitmapLockBits
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipFree

Sections

.text
Size: 282KB - Virtual size: 281KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1d11acb1ccccedc6d92a1610a26e2aa

Headers

DLL Characteristics

File Characteristics

Imports

version

setupapi

kernel32

user32

advapi32

shell32

ole32

oleaut32

shlwapi

userenv

gdiplus

Sections

.text Size: 282KB - Virtual size: 281KB

.rdata Size: 69KB - Virtual size: 68KB

.data Size: 9KB - Virtual size: 16KB

.rsrc Size: 49KB - Virtual size: 48KB

.reloc Size: 18KB - Virtual size: 18KB

.text
Size: 282KB - Virtual size: 281KB

.rdata
Size: 69KB - Virtual size: 68KB

.data
Size: 9KB - Virtual size: 16KB

.rsrc
Size: 49KB - Virtual size: 48KB

.reloc
Size: 18KB - Virtual size: 18KB