32d56479a1058bbb4a5e2d7990df650c31a0097bcf9871bc22cd159712b0e7e4

Sharing

Copy URL

Twitter E-mail

General

Target

32d56479a1058bbb4a5e2d7990df650c31a0097bcf9871bc22cd159712b0e7e4
Size

21KB
MD5

36cae6404e8249e13edb0c25301b0030
SHA1

289d19c4d30f67e5f8fe5a7b55419f99be8e4f2a
SHA256

32d56479a1058bbb4a5e2d7990df650c31a0097bcf9871bc22cd159712b0e7e4
SHA512

f5305b9c844d01cbfbc68c026db987460777ad803a3f37129b09ba0c259362e1a789625da8cd96b7207e5838e0e3e08b48b1aaf0d8d018dd1991f65e999dcb0e
SSDEEP

384:B57zFdRS98jAhn1fGaMcXVJymIuW2PZhh4WWieZWiU:L7zFLSl7+g0uW2PZhhdeQ

Score

N/A

Malware Config

Signatures

Files

32d56479a1058bbb4a5e2d7990df650c31a0097bcf9871bc22cd159712b0e7e4
.exe windows x86

59c188aed971bd231e021609f43c2f49

Code Sign

60:29:be:36:38:c4:8a:74:bb:5e:b2:8f:90:0a:7f:8c
Certificate

Issuer

CN=yFfJFQjZS5cVSsx

Not Before

20-03-2012 06:07

Not After

31-12-2039 23:59

Subject

CN=yFfJFQjZS5cVSsx

Extended Key Usages

ExtKeyUsageCodeSigning

e4:19:57:98:c1:4b:7c:2b:22:b0:29:de:dc:96:a2:5e:b9:4b:99:5b
Signer

Actual PE Digest

e4:19:57:98:c1:4b:7c:2b:22:b0:29:de:dc:96:a2:5e:b9:4b:99:5b

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=yFfJFQjZS5cVSsx

15-09-2022 14:52
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
GetProcAddress
GetModuleHandleA

msvcrt

memset

user32

wsprintfW
WINNLSEnableIME
VkKeyScanW
VkKeyScanExW
UnloadKeyboardLayout
UnionRect
SubtractRect
SetWindowsHookExW
SetWindowLongA
SetMessageExtraInfo
SetMenuDefaultItem
SetMenu
SetKeyboardState
SetDebugErrorLevel
SetClassWord
SendNotifyMessageW
SendMessageCallbackW
SendMessageCallbackA
SendMessageA
ScreenToClient
RemovePropW
RemovePropA
RegisterShellHookWindow
RegisterDeviceNotificationW
PostQuitMessage
PeekMessageW
PackDDElParam
OpenClipboard
OemToCharW
OemToCharBuffA
NotifyWinEvent
MonitorFromWindow
MessageBoxW
MessageBoxA
MapWindowPoints
LookupIconIdFromDirectory
IsRectEmpty
IsHungAppWindow
GetWindowThreadProcessId
GetWindowPlacement
GetWindowInfo
GetWindowDC
GetUserObjectInformationA
GetUpdateRgn
GetSystemMenu
GetShellWindow
GetPriorityClipboardFormat
GetMouseMovePointsEx
GetMonitorInfoW
GetMenuStringW
GetMenuState
GetMenuDefaultItem
GetLastActivePopup
GetIconInfo
GetComboBoxInfo
GetClipboardViewer
GetClassLongW
GetCaretPos
GetAncestor
EnumPropsW
EnumPropsExA
EnumPropsA
EnumDisplaySettingsW
EnumDisplayDevicesA
EnumDesktopsW
EnumClipboardFormats
EnableScrollBar
DrawEdge
DrawAnimatedRects
DispatchMessageW
DialogBoxIndirectParamW
DestroyMenu
DefWindowProcA
DdeQueryStringA
DdeKeepStringHandle
DdeInitializeW
DdeImpersonateClient
DdeAbandonTransaction
CreateWindowStationW
CreateWindowExA
CreatePopupMenu
CreateDialogParamA
CreateCursor
CloseDesktop
CheckMenuRadioItem
ChangeMenuA
ChangeDisplaySettingsExW
CascadeChildWindows
CallMsgFilterW
CallMsgFilterA
BlockInput
WinHelpW

gdi32

CombineTransform
CloseEnhMetaFile
Arc
XLATEOBJ_iXlate
UpdateColors
UnloadNetworkFonts
SetWindowExtEx
SetTextCharacterExtra
SetMagicColors
SetICMProfileW
SetColorAdjustment
SetBitmapDimensionEx
SetBitmapBits
SelectObject
SelectFontLocal
SaveDC
STROBJ_vEnumStart
STROBJ_bGetAdvanceWidths
RoundRect
ResetDCW
RemoveFontResourceTracking
PlgBlt
PATHOBJ_vEnumStart
OffsetRgn
NamedEscape
InvertRgn
HT_Get8BPPFormatPalette
GetTextExtentPointA
GetTextColor
GetTextAlign
GetRelAbs
GetRegionData
GetPixelFormat
GetObjectType
GetMetaFileBitsEx
GetKerningPairsA
GetGlyphOutlineW
GetGlyphOutline
GetDeviceGammaRamp
GetCurrentObject
GetCharacterPlacementA
GetCharWidthA
GetCharABCWidthsI
GetCharABCWidthsFloatA
GetBitmapBits
GdiSwapBuffers
GdiSetLastError
GdiSetAttrs
GdiPlayScript
GdiPlayPrivatePageEMF
GdiGetDevmodeForPage
GdiFixUpHandle
GdiEntry8
GdiConvertRegion
GdiConvertFont
GdiConvertBitmap
GdiConvertAndCheckDC
GdiAddGlsBounds
FillRgn
FONTOBJ_vGetInfo
ExtTextOutA
ExtFloodFill
ExtCreatePen
EnumFontsA
EnumFontFamiliesW
EnumFontFamiliesExA
EnumEnhMetaFile
EngWideCharToMultiByte
EngUnlockSurface
EngUnicodeToMultiByteN
EngQueryEMFInfo
EngFreeModule
EngCreateSemaphore
EnableEUDC
Ellipse
DeviceCapabilitiesExW
DeviceCapabilitiesExA
DeleteEnhMetaFile
DeleteDC
DeleteColorSpace
CreatePolygonRgn
CreatePolyPolygonRgn
CreatePenIndirect
CreateFontW
CreateEnhMetaFileW
CreateEllipticRgnIndirect
CreateDIBitmap
CreateColorSpaceW
CopyEnhMetaFileW
AddFontResourceExA

advapi32

RegOpenKeyExW

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59c188aed971bd231e021609f43c2f49

Code Sign

60:29:be:36:38:c4:8a:74:bb:5e:b2:8f:90:0a:7f:8cCertificate

Extended Key Usages

e4:19:57:98:c1:4b:7c:2b:22:b0:29:de:dc:96:a2:5e:b9:4b:99:5bSigner

Signature Validations

Verification

15-09-2022 14:52 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

advapi32

Sections

.text Size: 14KB - Virtual size: 14KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

60:29:be:36:38:c4:8a:74:bb:5e:b2:8f:90:0a:7f:8c
Certificate

e4:19:57:98:c1:4b:7c:2b:22:b0:29:de:dc:96:a2:5e:b9:4b:99:5b
Signer

15-09-2022 14:52
Valid: false

.text
Size: 14KB - Virtual size: 14KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB