25b057e7a4694e0cc117c484d75793f727b3ad4852e0f961e20cf62d7359abe5

Sharing

Copy URL Twitter E-mail

General

Target

25b057e7a4694e0cc117c484d75793f727b3ad4852e0f961e20cf62d7359abe5
Size

68KB
MD5

0c60822657921290752866082021ff80
SHA1

a1f69ca762198a1651db4d1d0b98ba81dac79857
SHA256

25b057e7a4694e0cc117c484d75793f727b3ad4852e0f961e20cf62d7359abe5
SHA512

f2bc9e935b0ef04b9f0a537968071981ce8aa23b753d0b4214d66ae270a86fb8aa71ae279aa2e029d50a938cf98e82d81cf54b67380a2f92a0c7bac690c33ae7
SSDEEP

768:hsKPbc5bq56lx3DhtjNorxw6H15bqbksKEn:hsKPObqwlx3l5NorxzHnbq4sKEn

Score

N/A

Malware Config

Signatures

Files

25b057e7a4694e0cc117c484d75793f727b3ad4852e0f961e20cf62d7359abe5
.exe windows x86

9bd221d8302267608df397882d2a06b7

Code Sign

50:ff:f0:c0:f0:0e:74:73:bd:68:f4:1b:97:1e:e7:47
Certificate

Issuer

CN=zhuxian,O=Mao,1.2.840.113549.1.9.1=#0c134d657465696f6340686f746d61696c2e636f6d

Not Before

08/08/2021, 03:18

Not After

31/12/2039, 23:59

Subject

CN=zhuxian,O=Mao,1.2.840.113549.1.9.1=#0c134d657465696f6340686f746d61696c2e636f6d

1e:b1:32:d5:7e:79:68:96:0d:f2:6e:85:4e:b0:dd:a6
Certificate

Issuer

CN=JemmyLoveJenny SHA1 TimeStamping Services CA,OU=pki.jemmylovejenny.tk,O=JemmyLoveJenny PKI Service,C=CN

Not Before

01/01/2000, 00:00

Not After

31/12/2099, 23:59

Subject

CN=Fake TimeStamp Responder,OU=timestamp.pki.jemmylovejenny.tk,O=JemmyLoveJenny PKI Service,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

1e:b1:32:d5:7e:79:68:96
Certificate

Issuer

CN=JemmyLoveJenny EV Root CA,OU=pki.jemmylovejenny.tk,O=JemmyLoveJenny PKI Service,C=CN

Not Before

01/01/2000, 00:00

Not After

31/12/2099, 23:59

Subject

CN=JemmyLoveJenny SHA1 TimeStamping Services CA,OU=pki.jemmylovejenny.tk,O=JemmyLoveJenny PKI Service,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

50:34:ac:fe:70:b8:25:99:0f:5f:62:6e:cf:ec:eb:33:f1:e6:df:b5
Signer

Actual PE Digest

50:34:ac:fe:70:b8:25:99:0f:5f:62:6e:cf:ec:eb:33:f1:e6:df:b5

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=zhuxian,O=Mao,1.2.840.113549.1.9.1=#0c134d657465696f6340686f746d61696c2e636f6d

01/04/2011, 00:00
Valid: false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord626
EVENT_SINK_AddRef
DllFunctionCall
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord100

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9bd221d8302267608df397882d2a06b7

Code Sign

50:ff:f0:c0:f0:0e:74:73:bd:68:f4:1b:97:1e:e7:47Certificate

1e:b1:32:d5:7e:79:68:96:0d:f2:6e:85:4e:b0:dd:a6Certificate

Extended Key Usages

Key Usages

1e:b1:32:d5:7e:79:68:96Certificate

Extended Key Usages

Key Usages

50:34:ac:fe:70:b8:25:99:0f:5f:62:6e:cf:ec:eb:33:f1:e6:df:b5Signer

Signature Validations

Verification

01/04/2011, 00:00 Valid: false

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 32KB - Virtual size: 30KB

.data Size: - Virtual size: 2KB

.rsrc Size: 28KB - Virtual size: 25KB

50:ff:f0:c0:f0:0e:74:73:bd:68:f4:1b:97:1e:e7:47
Certificate

1e:b1:32:d5:7e:79:68:96:0d:f2:6e:85:4e:b0:dd:a6
Certificate

1e:b1:32:d5:7e:79:68:96
Certificate

50:34:ac:fe:70:b8:25:99:0f:5f:62:6e:cf:ec:eb:33:f1:e6:df:b5
Signer

01/04/2011, 00:00
Valid: false

.text
Size: 32KB - Virtual size: 30KB

.data
Size: - Virtual size: 2KB

.rsrc
Size: 28KB - Virtual size: 25KB