5d4236fc839e2acea8519bc5de7fb1597746ce2957c89a653e6528c5b1395f91

Sharing

Copy URL Twitter E-mail

General

Target

5d4236fc839e2acea8519bc5de7fb1597746ce2957c89a653e6528c5b1395f91
Size

315KB
MD5

03f0b068952e7b79a3e927d96e406734
SHA1

feaed56c7638bcc713db76864a2e68b351c8fbde
SHA256

5d4236fc839e2acea8519bc5de7fb1597746ce2957c89a653e6528c5b1395f91
SHA512

96279ad627d5c883062bc11f80d0895e5cf640907b2e7ec690273f78a27bfbc1bfacf6f2feaebd61bef370081c32736b9a93cfe3f9901f8037fcabf9a4e08008
SSDEEP

6144:LDAcT/nzQPSqzXXNydn3nozW5TFYkI4uLZMGLv+xxxxxxxxxxxxxxxxngxxxxxxK:nZT/zQPRHEdn34y3IbnLGxxxxxxxxxx3

Score

N/A

Malware Config

Signatures

Files

5d4236fc839e2acea8519bc5de7fb1597746ce2957c89a653e6528c5b1395f91
.exe windows x86

d5c789d4e602030ee7b0f0ab6b74258f

Code Sign

01:64:9b:a0:74:6d:08:53:b3:3d:20:74:9e:05:b0:30
Certificate

Issuer

CN=CrZvMFNeGbO2FBAdLGSwKOYytbbzrF

Not Before

02/05/2012, 06:07

Not After

31/12/2039, 23:59

Subject

CN=CrZvMFNeGbO2FBAdLGSwKOYytbbzrF

Extended Key Usages

ExtKeyUsageCodeSigning

57:8d:95:19:6e:7e:a0:d6:4e:2c:1b:08:58:4b:07:38:c7:fb:9f:d8
Signer

Actual PE Digest

57:8d:95:19:6e:7e:a0:d6:4e:2c:1b:08:58:4b:07:38:c7:fb:9f:d8

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=CrZvMFNeGbO2FBAdLGSwKOYytbbzrF

15/09/2022, 14:59
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
GetWindowsDirectoryW
lstrcatW
CreateFileW

user32

InvalidateRect
GetDC
ReleaseDC
BeginPaint
LoadCursorA
SetCursor
ShowCursor
EndPaint
PostQuitMessage
DefWindowProcA

gdi32

SetPixel
LineTo

advapi32

RegOpenKeyA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.z2
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.z3
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.z
Size: 307KB - Virtual size: 307KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5c789d4e602030ee7b0f0ab6b74258f

Code Sign

01:64:9b:a0:74:6d:08:53:b3:3d:20:74:9e:05:b0:30Certificate

Extended Key Usages

57:8d:95:19:6e:7e:a0:d6:4e:2c:1b:08:58:4b:07:38:c7:fb:9f:d8Signer

Signature Validations

Verification

15/09/2022, 14:59 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 2KB - Virtual size: 2KB

.z2 Size: 512B - Virtual size: 4B

.data Size: 1024B - Virtual size: 996B

.z3 Size: 512B - Virtual size: 4B

.z Size: 307KB - Virtual size: 307KB

.rsrc Size: 1024B - Virtual size: 968B

.reloc Size: 512B - Virtual size: 168B

01:64:9b:a0:74:6d:08:53:b3:3d:20:74:9e:05:b0:30
Certificate

57:8d:95:19:6e:7e:a0:d6:4e:2c:1b:08:58:4b:07:38:c7:fb:9f:d8
Signer

15/09/2022, 14:59
Valid: false

.text
Size: 2KB - Virtual size: 2KB

.z2
Size: 512B - Virtual size: 4B

.data
Size: 1024B - Virtual size: 996B

.z3
Size: 512B - Virtual size: 4B

.z
Size: 307KB - Virtual size: 307KB

.rsrc
Size: 1024B - Virtual size: 968B

.reloc
Size: 512B - Virtual size: 168B