121d891cc3e31e77d1196f69baf225d20c20a01bc9d15f6c4d72a7811fee811a

Sharing

Copy URL Twitter E-mail

General

Target

121d891cc3e31e77d1196f69baf225d20c20a01bc9d15f6c4d72a7811fee811a
Size

119KB
MD5

795c9c9483b6f4eccf2016e5442dfa5a
SHA1

89cd4ad35948be554629e21fde17020cd18e1642
SHA256

121d891cc3e31e77d1196f69baf225d20c20a01bc9d15f6c4d72a7811fee811a
SHA512

49311dfe7a2d9681f372aa7c604919f375c2ee890474bfb6b3e2a3c6eb7f0dc32606d46003ad028398380f58c13be98d1eb1b16e46285b048606a76ef92fc027
SSDEEP

1536:2sbWqqrgJCunz07116b82+N7hDEl2z7spCvqdic2HE5U7YcheUNSRf7meU:2sbWqrwkzDsN7hQWwp0q0E5kbwDmeU

Score

N/A

Malware Config

Signatures

Files

121d891cc3e31e77d1196f69baf225d20c20a01bc9d15f6c4d72a7811fee811a
.exe windows x86

3f8461314363904ba605c48a83bc41ec

Code Sign

50:b6:ed:79:a1:ec:4e:62:bc:33:32:46:3e:eb:9e:2d
Certificate

Issuer

CN=7348345845

Not Before

25/01/2012, 13:00

Not After

31/12/2039, 23:59

Subject

CN=7348345845

Extended Key Usages

ExtKeyUsageCodeSigning

9e:f5:0f:ab:7f:97:9e:6f:0d:42:2e:29:b8:42:47:b9:7f:76:0c:2e
Signer

Actual PE Digest

9e:f5:0f:ab:7f:97:9e:6f:0d:42:2e:29:b8:42:47:b9:7f:76:0c:2e

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=7348345845

15/09/2022, 14:52
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
LoadLibraryW
AddConsoleAliasA
BeginUpdateResourceW
ClearCommError
CommConfigDialogW
CopyFileA
CreateEventA
CreateIoCompletionPort
CreateJobObjectA
CreateJobObjectW
CreateNamedPipeW
DebugBreak
DefineDosDeviceA
DeleteTimerQueueEx
EndUpdateResourceW
EnumCalendarInfoExW
EnumDateFormatsExW
EnumSystemCodePagesA
EnumSystemLanguageGroupsW
EnumTimeFormatsA
FindFirstFileA
FreeLibrary
GetCPInfo
GetCalendarInfoA
GetCommTimeouts
GetCompressedFileSizeW
GetComputerNameA
GetComputerNameExA
GetConsoleAliasesLengthA
GetConsoleCursorInfo
GetConsoleMode
GetConsoleOutputCP
GetDateFormatW
GetEnvironmentStrings
GetFileAttributesExA
GetLastError
GetLogicalDrives
GetNamedPipeInfo
GetOEMCP
GetPrivateProfileStructA
GetStdHandle
GetSystemDefaultLCID
GetTempPathA
GetThreadTimes
GetTimeZoneInformation
GetUserDefaultLCID
ExitProcess
GetVolumeInformationW
GlobalGetAtomNameA
HeapDestroy
IsBadCodePtr
IsDebuggerPresent
LoadLibraryExA
LoadLibraryExW
LocalAlloc
LocalCompact
LocalFileTimeToFileTime
MoveFileExW
Process32NextW
QueryPerformanceCounter
QueryPerformanceFrequency
ReadConsoleA
RtlUnwind
SetCommState
SetComputerNameW
SetConsoleCursor
SetConsoleCursorPosition
SetConsoleDisplayMode
SetConsoleWindowInfo
SetFileApisToOEM
SetFileAttributesA
SetFileAttributesW
SetHandleInformation
SetLastError
SetNamedPipeHandleState
SetVolumeMountPointA
SetVolumeMountPointW
SleepEx
SwitchToFiber
UnhandledExceptionFilter
VerifyVersionInfoA
VirtualFree
VirtualUnlock
WaitCommEvent
WaitForSingleObjectEx
WinExec
WritePrivateProfileStructW
lstrcat
lstrcmpA
lstrcpyA
lstrcpyW
lstrcpynW
lstrlenA
VirtualAlloc
GetVersion

user32

AppendMenuW
BringWindowToTop
CascadeWindows
CharLowerBuffA
CharNextW
CharPrevExA
CharUpperW
CheckDlgButton
CloseClipboard
CountClipboardFormats
CreateDesktopA
CreateWindowStationW
DdeAbandonTransaction
DdeClientTransaction
DdeImpersonateClient
DdeInitializeW
DdeQueryStringW
DdeReconnect
DefWindowProcA
DestroyAcceleratorTable
DialogBoxIndirectParamA
DialogBoxIndirectParamW
DialogBoxParamW
DispatchMessageA
DragObject
DrawFrameControl
DrawIconEx
EditWndProc
EmptyClipboard
EnableScrollBar
EnumDisplaySettingsW
EqualRect
FindWindowW
FlashWindowEx
GetAltTabInfo
GetClassInfoExW
GetClipboardFormatNameA
GetClipboardOwner
GetDoubleClickTime
GetKBCodePage
GetKeyNameTextA
GetLastActivePopup
GetMenuContextHelpId
GetMenuItemRect
GetMessageA
GetMessageExtraInfo
GetMouseMovePointsEx
GetPropA
GetSystemMenu
GetTabbedTextExtentA
GetWindowLongA
GetWindowModuleFileNameA
GetWindowThreadProcessId
GrayStringA
InflateRect
InsertMenuItemA
InvalidateRgn
IsCharLowerW
IsCharUpperW
IsDialogMessageA
IsHungAppWindow
IsWindow
LoadBitmapA
MapWindowPoints
MessageBoxExA
MoveWindow
MsgWaitForMultipleObjects
OpenClipboard
OpenDesktopA
OpenInputDesktop
PeekMessageW
PostMessageA
RealGetWindowClassA
RegisterWindowMessageW
RemovePropW
SetActiveWindow
SetClassLongW
SetDlgItemTextA
SetForegroundWindow
SetMenuDefaultItem
SetParent
SetScrollInfo
SetThreadDesktop
SetUserObjectSecurity
SetWindowTextW
SetWindowsHookExW
SetWindowsHookW
TranslateAcceleratorA
UnregisterClassA
ValidateRect
WINNLSEnableIME
WINNLSGetEnableStatus
wsprintfW
AnyPopup
AdjustWindowRectEx

advapi32

RegOpenKeyExW

ole32

CLIPFORMAT_UserSize
CLSIDFromString
CoAddRefServerProcess
CoAllowSetForegroundWindow
CoCancelCall
CoCopyProxy
CoCreateInstanceEx
CoFileTimeNow
CoFreeAllLibraries
CoFreeLibrary
CoGetClassVersion
CoImpersonateClient
CoInstall
CoLoadLibrary
CoLockObjectExternal
CoMarshalHresult
CoQueryProxyBlanket
CoRegisterMessageFilter
CoResumeClassObjects
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CoUnmarshalHresult
CoUnmarshalInterface
CoWaitForMultipleHandles
CreateClassMoniker
CreateDataAdviseHolder
CreateDataCache
EnableHookObject
GetHGlobalFromILockBytes
HACCEL_UserMarshal
HACCEL_UserSize
HBRUSH_UserFree
HBRUSH_UserMarshal
HBRUSH_UserSize
HDC_UserFree
HDC_UserUnmarshal
HENHMETAFILE_UserMarshal
HENHMETAFILE_UserUnmarshal
HICON_UserFree
HMENU_UserFree
HMENU_UserUnmarshal
HMETAFILEPICT_UserMarshal
HMETAFILEPICT_UserUnmarshal
HMETAFILE_UserUnmarshal
HPALETTE_UserSize
HPALETTE_UserUnmarshal
IIDFromString
MkParseDisplayName
MonikerCommonPrefixWith
MonikerRelativePathTo
OleCreateDefaultHandler
OleCreateFromFileEx
OleCreateMenuDescriptor
OleCreateStaticFromData
OleDestroyMenuDescriptor
OleDoAutoConvert
OleDuplicateData
OleFlushClipboard
OleInitializeWOW
OleIsRunning
OleLockRunning
OleNoteObjectVisible
OleRegEnumFormatEtc
OleRegGetUserType
OleSetMenuDescriptor
RevokeDragDrop
SNB_UserMarshal
SNB_UserUnmarshal
StgConvertPropertyToVariant
StgCreatePropSetStg
StgCreatePropStg
StgOpenAsyncDocfileOnIFillLockBytes
StgOpenPropStg
StgOpenStorageEx
StgSetTimes
StringFromCLSID
StringFromGUID2
UtConvertDvtd16toDvtd32
UtConvertDvtd32toDvtd16
UtGetDvtd16Info
WriteOleStg

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ttt
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f8461314363904ba605c48a83bc41ec

Code Sign

50:b6:ed:79:a1:ec:4e:62:bc:33:32:46:3e:eb:9e:2dCertificate

Extended Key Usages

9e:f5:0f:ab:7f:97:9e:6f:0d:42:2e:29:b8:42:47:b9:7f:76:0c:2eSigner

Signature Validations

Verification

15/09/2022, 14:52 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

Sections

.text Size: 9KB - Virtual size: 9KB

.ttt Size: 103KB - Virtual size: 102KB

.data Size: 512B - Virtual size: 180B

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 261KB

50:b6:ed:79:a1:ec:4e:62:bc:33:32:46:3e:eb:9e:2d
Certificate

9e:f5:0f:ab:7f:97:9e:6f:0d:42:2e:29:b8:42:47:b9:7f:76:0c:2e
Signer

15/09/2022, 14:52
Valid: false

.text
Size: 9KB - Virtual size: 9KB

.ttt
Size: 103KB - Virtual size: 102KB

.data
Size: 512B - Virtual size: 180B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 261KB