General

Malware Config

Signatures

Files

• e3be4420fc72c65d8ebe91239355ecbd

  .exe windows x86

  f34d5f2d4577ed6d9ceec516c1f5a744

  
  

  Code Sign

  7f:e5:80:18:35:5b:8b:a8:4b:69:3e:8c:ea:e8:07:6e

  Certificate

  Issuer

  CN=Legitimacy,O=Sifters Machine Inc.,C=GQ,1.2.840.113549.1.9.1=#0c18616d70756c65736f736d6174657340676d61696c2e636f6d

  Not Before

  04-02-2022 21:00

  Not After

  11-02-2032 21:00

  Subject

  CN=Legitimacy,O=Sifters Machine Inc.,C=GQ,1.2.840.113549.1.9.1=#0c18616d70756c65736f736d6174657340676d61696c2e636f6d

  bb:9c:4f:29:d9:15:8a:ea:b5:51:3b:b8:69:d0:e4:a1:07:65:97:87

  Signer

  Actual PE Digest

  bb:9c:4f:29:d9:15:8a:ea:b5:51:3b:b8:69:d0:e4:a1:07:65:97:87

  Digest Algorithm

  sha1

  PE Digest Matches

  true

  Signature Validations

  Trusted

  false

  Verification

  Signing Certificate

  CN=Legitimacy,O=Sifters Machine Inc.,C=GQ,1.2.840.113549.1.9.1=#0c18616d70756c65736f736d6174657340676d61696c2e636f6d

  14-02-2022 17:36

  Valid: false

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  mscoree

  _CorExeMain

  Sections

  .text

  Size: 1.0MB - Virtual size: 1.0MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1024B - Virtual size: 708B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .reloc

  Size: 512B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ