General

Malware Config

Signatures

Files

• ac6e643d7a21b7bdc79a749aabc30d7c54fc02e08a7a6a40ce71d472e3611105

  .exe windows x86

  f34d5f2d4577ed6d9ceec516c1f5a744

  
  

  Code Sign

  5a:00:cd:dd:32:d3:90:a0:44:53:00:78:e6:81:6a:cc

  Certificate

  Issuer

  CN={90A4A49C-0599-418C-99D7-B1513341D256}

  Not Before

  15-03-2014 14:18

  Not After

  15-03-2015 20:18

  Subject

  CN={90A4A49C-0599-418C-99D7-B1513341D256}

  20:e6:f7:b9:41:d9:5b:af:0c:89:2d:84:c6:1b:9b:94:14:5c:97:e7

  Signer

  Actual PE Digest

  20:e6:f7:b9:41:d9:5b:af:0c:89:2d:84:c6:1b:9b:94:14:5c:97:e7

  Digest Algorithm

  sha1

  PE Digest Matches

  true

  Signature Validations

  Trusted

  false

  Verification

  Signing Certificate

  CN={90A4A49C-0599-418C-99D7-B1513341D256}

  29-09-2022 18:51

  Valid: false

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  mscoree

  _CorExeMain

  Sections

  .text

  Size: 753KB - Virtual size: 753KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1024B - Virtual size: 992B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ