Static task
static1
General
-
Target
Checklist_0_2_0_136_jre-64.exe
-
Size
28.7MB
-
MD5
d3418307b2f74818bb0390ad0386152e
-
SHA1
7bab8b5bdb7f23d1a3972baf331a538dc4d4801a
-
SHA256
9c77fbb550149c345753e1e56ebd8ce23f7f8e991539362616df216da4c6242f
-
SHA512
6f5b41223b7cf56fc03a71439a00e12aa977fe2c103789e0778961c8094d8cd353c642109918b53f6829b1874d2bd021a18869c767818d01ff29f207ba3ca97a
-
SSDEEP
786432:E8Oe7B2xGsCYDUJrBVoyZH+ubPT0yZH+uAdq:E8OsB2xIYD6r/7YE
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Checklist_0_2_0_136_jre-64.exe
Files
-
Checklist_0_2_0_136_jre-64.exe.exe windows:4 windows x64 arch:x64
d53549a5e44afb35b86329b975597242
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
user32
SetDlgItemTextA
SetWindowTextA
DialogBoxParamA
EndDialog
GetDlgItem
DefDlgProcA
LoadIconA
LoadCursorA
RegisterClassA
SendDlgItemMessageA
ExitWindowsEx
EnumWindows
IsIconic
ShowWindow
SetForegroundWindow
GetLastActivePopup
IsWindowVisible
GetWindowThreadProcessId
FindWindowA
GetParent
MessageBoxA
GetDesktopWindow
GetWindowRect
CopyRect
OffsetRect
SetWindowPos
MessageBoxW
advapi32
RegEnumKeyExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
comctl32
ord17
comdlg32
GetOpenFileNameA
kernel32
GetModuleHandleA
AllocConsole
GetConsoleTitleA
GetTickCount
SetConsoleTitleA
GetProcAddress
FindResourceA
LoadResource
SetCurrentDirectoryA
SizeofResource
Sleep
GetCommandLineW
CreateSemaphoreA
ReleaseSemaphore
SearchPathA
SetEnvironmentVariableA
LoadLibraryA
GetVersionExA
SetThreadPriority
CreateThread
GetCurrentDirectoryA
GetCurrentThreadId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
LockResource
QueryPerformanceCounter
GetStartupInfoA
CreateFileA
SetFilePointer
GetLastError
WriteFile
ReadFile
CloseHandle
RemoveDirectoryA
CreateDirectoryA
GetLongPathNameA
ExitProcess
FindClose
FindNextFileA
DeleteFileA
FindFirstFileA
WideCharToMultiByte
MultiByteToWideChar
AreFileApisANSI
GetShortPathNameA
GetModuleFileNameA
GetShortPathNameW
GetModuleFileNameW
GetFullPathNameA
GetWindowsDirectoryA
GetEnvironmentVariableA
GetTempPathA
GetTempFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
GetConsoleOutputCP
GetCurrentProcessId
DuplicateHandle
GetCurrentProcess
TerminateProcess
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
RtlCaptureContext
msvcp60
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QEAAAEAV01@AEBV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QEAA@AEBV01@@Z
??1_Lockit@std@@QEAA@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPEBDXZ@4DB
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QEAA@PEBDAEBV?$allocator@D@1@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QEAA@XZ
??0_Lockit@std@@QEAA@XZ
??Mstd@@YA_NAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
msvcrt
strcpy
atoi
strtok
sprintf
strlen
strcat
fflush
fprintf
_iob
fwprintf
swprintf
strstr
strcmp
strncmp
wcslen
printf
memcpy
_mkdir
_rmdir
strchr
rand
srand
time
__CxxFrameHandler
malloc
fopen
strncpy
_strupr
free
fclose
fgets
_assert
wcsncmp
memset
getenv
wcscpy
remove
_putenv
mktime
strrchr
difftime
ctime
_tempnam
vfprintf
wcschr
wcsncpy
fwrite
_fullpath
wcstombs
wcscat
exit
_chdir
wcscmp
_getcwd
fread
_errno
fseek
fputc
ftell
_fdopen
__dllonexit
_onexit
__C_specific_handler
_XcptFilter
_c_exit
_exit
_cexit
_acmdln
__getmainargs
_initterm
__setusermatherr
_commode
_fmode
__set_app_type
??2@YAPEAX_K@Z
_wcslwr
_stricmp
memcmp
Sections
.text Size: 79KB - Virtual size: 79KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 35KB - Virtual size: 35KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 52KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 32KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ