0b4be35df35c4f39b6300c24b47b2d8de379e3bb7b29e842a87646321be6e83e

Sharing

Copy URL

Twitter E-mail

General

Target

0b4be35df35c4f39b6300c24b47b2d8de379e3bb7b29e842a87646321be6e83e
Size

172KB
MD5

bcbd66162813280de8cce9dcf6b928e3
SHA1

194cb533710457ab96d313605996439d51927adf
SHA256

0b4be35df35c4f39b6300c24b47b2d8de379e3bb7b29e842a87646321be6e83e
SHA512

9f7bf60bb7d74725ab15361d18b67b6be062502a88f9b20959e8f1c20d2785170fae454eb3e6e65fe1f370af5e3e51c7e719e588120345d36c1d9875f439b85d
SSDEEP

3072:xpXwSB7x7/gqeGV09dQGKE3Tf3vqyW3ZcXUKwe5:IEVTg+VI2zErfqyMyUKX

Score

N/A

Malware Config

Signatures

Files

0b4be35df35c4f39b6300c24b47b2d8de379e3bb7b29e842a87646321be6e83e
.exe windows x86

c2e565197e385c9d09ba010f53d1f5ca

Code Sign

6e:d2:ef:44:b4:9e:4c:8f:4d:a7:c7:9f:37:b4:d7:a1
Certificate

Issuer

CN=5U84

Not Before

01-06-2012 08:28

Not After

31-12-2039 23:59

Subject

CN=5U84

Extended Key Usages

ExtKeyUsageCodeSigning

29:0d:65:a2:fe:92:01:c2:d9:3b:13:62:4c:f8:b4:52:b8:67:06:a6
Signer

Actual PE Digest

29:0d:65:a2:fe:92:01:c2:d9:3b:13:62:4c:f8:b4:52:b8:67:06:a6

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=5U84

15-09-2022 14:52
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW
lstrcatW
CreateFileW
VirtualAllocEx
CloseHandle
GetModuleHandleW
GetProcAddress

user32

GetDC
ReleaseDC
InvalidateRect
BeginPaint
ScrollWindow
EndPaint
PostQuitMessage
DefWindowProcA

gdi32

GetStockObject
SelectObject
GetTextMetricsA
SetBkMode
TextOutA

advapi32

RegCloseKey

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data5
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data4
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2e565197e385c9d09ba010f53d1f5ca

Code Sign

6e:d2:ef:44:b4:9e:4c:8f:4d:a7:c7:9f:37:b4:d7:a1Certificate

Extended Key Usages

29:0d:65:a2:fe:92:01:c2:d9:3b:13:62:4c:f8:b4:52:b8:67:06:a6Signer

Signature Validations

Verification

15-09-2022 14:52 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 53KB - Virtual size: 53KB

.data Size: 109KB - Virtual size: 109KB

.data5 Size: 1024B - Virtual size: 1000B

.data4 Size: 1024B - Virtual size: 1000B

.data3 Size: 1024B - Virtual size: 1000B

.data2 Size: 1024B - Virtual size: 1000B

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 280B

6e:d2:ef:44:b4:9e:4c:8f:4d:a7:c7:9f:37:b4:d7:a1
Certificate

29:0d:65:a2:fe:92:01:c2:d9:3b:13:62:4c:f8:b4:52:b8:67:06:a6
Signer

15-09-2022 14:52
Valid: false

.text
Size: 53KB - Virtual size: 53KB

.data
Size: 109KB - Virtual size: 109KB

.data5
Size: 1024B - Virtual size: 1000B

.data4
Size: 1024B - Virtual size: 1000B

.data3
Size: 1024B - Virtual size: 1000B

.data2
Size: 1024B - Virtual size: 1000B

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 280B