972203f308090a72a722c5ce440358a1a560436cb2a3f606102424684fedcad8

Sharing

Copy URL Twitter E-mail

General

Target

972203f308090a72a722c5ce440358a1a560436cb2a3f606102424684fedcad8
Size

315KB
MD5

9146b68075cc14f8c1566308000b31a2
SHA1

b5dbbb58a91696fe81bc6a1a1e3e28050f53d4ed
SHA256

972203f308090a72a722c5ce440358a1a560436cb2a3f606102424684fedcad8
SHA512

20e4be9ac1d56722137998b92bd3dcf1930fc59697444187fea169d73dd28ca8f66b176ae19c86d3ee0d431174abbf51c06b643304a30abcb371006fbeccb2e0
SSDEEP

6144:ZDCcTFnzQPSqzXXPGydn3nozW5TFYkI4uLZMGLv+xxxxxxxxxxxxxxxxngxxxxxW:VLTFzQPRHPrdn34y3IbnLGxxxxxxxxxX

Score

N/A

Malware Config

Signatures

Files

972203f308090a72a722c5ce440358a1a560436cb2a3f606102424684fedcad8
.exe windows x86

d5c789d4e602030ee7b0f0ab6b74258f

Code Sign

01:64:9b:a0:74:6d:08:53:b3:3d:20:74:9e:05:b0:30
Certificate

Issuer

CN=CrZvMFNeGbO2FBAdLGSwKOYytbbzrF

Not Before

02/05/2012, 06:07

Not After

31/12/2039, 23:59

Subject

CN=CrZvMFNeGbO2FBAdLGSwKOYytbbzrF

Extended Key Usages

ExtKeyUsageCodeSigning

7c:d7:e9:42:06:dc:77:53:45:31:0f:bc:67:b0:81:7a:47:17:f9:c9
Signer

Actual PE Digest

7c:d7:e9:42:06:dc:77:53:45:31:0f:bc:67:b0:81:7a:47:17:f9:c9

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=CrZvMFNeGbO2FBAdLGSwKOYytbbzrF

15/09/2022, 14:52
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
GetWindowsDirectoryW
lstrcatW
CreateFileW

user32

InvalidateRect
GetDC
ReleaseDC
BeginPaint
LoadCursorA
SetCursor
ShowCursor
EndPaint
PostQuitMessage
DefWindowProcA

gdi32

SetPixel
LineTo

advapi32

RegOpenKeyA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.z2
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.z3
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.z
Size: 307KB - Virtual size: 307KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5c789d4e602030ee7b0f0ab6b74258f

Code Sign

01:64:9b:a0:74:6d:08:53:b3:3d:20:74:9e:05:b0:30Certificate

Extended Key Usages

7c:d7:e9:42:06:dc:77:53:45:31:0f:bc:67:b0:81:7a:47:17:f9:c9Signer

Signature Validations

Verification

15/09/2022, 14:52 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 2KB - Virtual size: 2KB

.z2 Size: 512B - Virtual size: 4B

.data Size: 1024B - Virtual size: 996B

.z3 Size: 512B - Virtual size: 4B

.z Size: 307KB - Virtual size: 307KB

.rsrc Size: 1024B - Virtual size: 968B

.reloc Size: 512B - Virtual size: 168B

01:64:9b:a0:74:6d:08:53:b3:3d:20:74:9e:05:b0:30
Certificate

7c:d7:e9:42:06:dc:77:53:45:31:0f:bc:67:b0:81:7a:47:17:f9:c9
Signer

15/09/2022, 14:52
Valid: false

.text
Size: 2KB - Virtual size: 2KB

.z2
Size: 512B - Virtual size: 4B

.data
Size: 1024B - Virtual size: 996B

.z3
Size: 512B - Virtual size: 4B

.z
Size: 307KB - Virtual size: 307KB

.rsrc
Size: 1024B - Virtual size: 968B

.reloc
Size: 512B - Virtual size: 168B