69ff6484f397e4f1e2ce8c9b8fa13c93d281534c08bbaf7114f0d3f365910fb6

Sharing

Copy URL Twitter E-mail

General

Target

69ff6484f397e4f1e2ce8c9b8fa13c93d281534c08bbaf7114f0d3f365910fb6
Size

68KB
MD5

a525a901a52209f65491f9e42cf5434f
SHA1

3f10939e2b2bbf025c1ab8446aa6b12852793815
SHA256

69ff6484f397e4f1e2ce8c9b8fa13c93d281534c08bbaf7114f0d3f365910fb6
SHA512

eebdb783a90a84a245c7e93c48442c1ea29ff52f52678d68b0a2e78fd5719081ec63e10bba33d5ba8a5a5da4a45702f6568af6bcf3acad2f6060668dd431777c
SSDEEP

768:qsKPbc5bq56lxtEXACZrxw6H15bqbksKmeq:qsKPObqwlxtJCZrxzHnbq4sKmeq

Score

N/A

Malware Config

Signatures

Files

69ff6484f397e4f1e2ce8c9b8fa13c93d281534c08bbaf7114f0d3f365910fb6
.exe windows x86

9bd221d8302267608df397882d2a06b7

Code Sign

50:ff:f0:c0:f0:0e:74:73:bd:68:f4:1b:97:1e:e7:47
Certificate

Issuer

CN=zhuxian,O=Mao,1.2.840.113549.1.9.1=#0c134d657465696f6340686f746d61696c2e636f6d

Not Before

08/08/2021, 03:18

Not After

31/12/2039, 23:59

Subject

CN=zhuxian,O=Mao,1.2.840.113549.1.9.1=#0c134d657465696f6340686f746d61696c2e636f6d

1e:b1:32:d5:7e:79:68:96:0d:f2:6e:85:4e:b0:dd:a6
Certificate

Issuer

CN=JemmyLoveJenny SHA1 TimeStamping Services CA,OU=pki.jemmylovejenny.tk,O=JemmyLoveJenny PKI Service,C=CN

Not Before

01/01/2000, 00:00

Not After

31/12/2099, 23:59

Subject

CN=Fake TimeStamp Responder,OU=timestamp.pki.jemmylovejenny.tk,O=JemmyLoveJenny PKI Service,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

1e:b1:32:d5:7e:79:68:96
Certificate

Issuer

CN=JemmyLoveJenny EV Root CA,OU=pki.jemmylovejenny.tk,O=JemmyLoveJenny PKI Service,C=CN

Not Before

01/01/2000, 00:00

Not After

31/12/2099, 23:59

Subject

CN=JemmyLoveJenny SHA1 TimeStamping Services CA,OU=pki.jemmylovejenny.tk,O=JemmyLoveJenny PKI Service,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

76:2c:24:b3:1a:e2:72:9f:ce:50:98:a8:40:a4:f7:41:ee:71:03:c9
Signer

Actual PE Digest

76:2c:24:b3:1a:e2:72:9f:ce:50:98:a8:40:a4:f7:41:ee:71:03:c9

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=zhuxian,O=Mao,1.2.840.113549.1.9.1=#0c134d657465696f6340686f746d61696c2e636f6d

01/04/2011, 00:00
Valid: false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord626
EVENT_SINK_AddRef
DllFunctionCall
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord100

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9bd221d8302267608df397882d2a06b7

Code Sign

50:ff:f0:c0:f0:0e:74:73:bd:68:f4:1b:97:1e:e7:47Certificate

1e:b1:32:d5:7e:79:68:96:0d:f2:6e:85:4e:b0:dd:a6Certificate

Extended Key Usages

Key Usages

1e:b1:32:d5:7e:79:68:96Certificate

Extended Key Usages

Key Usages

76:2c:24:b3:1a:e2:72:9f:ce:50:98:a8:40:a4:f7:41:ee:71:03:c9Signer

Signature Validations

Verification

01/04/2011, 00:00 Valid: false

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 32KB - Virtual size: 30KB

.data Size: - Virtual size: 2KB

.rsrc Size: 28KB - Virtual size: 25KB

50:ff:f0:c0:f0:0e:74:73:bd:68:f4:1b:97:1e:e7:47
Certificate

1e:b1:32:d5:7e:79:68:96:0d:f2:6e:85:4e:b0:dd:a6
Certificate

1e:b1:32:d5:7e:79:68:96
Certificate

76:2c:24:b3:1a:e2:72:9f:ce:50:98:a8:40:a4:f7:41:ee:71:03:c9
Signer

01/04/2011, 00:00
Valid: false

.text
Size: 32KB - Virtual size: 30KB

.data
Size: - Virtual size: 2KB

.rsrc
Size: 28KB - Virtual size: 25KB