a2507542b73d3ea622232e37904e517aea8216be2c0731a7b2afb8b207b9fa80

Sharing

Copy URL

Twitter E-mail

General

Target

a2507542b73d3ea622232e37904e517aea8216be2c0731a7b2afb8b207b9fa80
Size

1.1MB
MD5

836458290d841f1e75d92cc3426472c2
SHA1

3b5a286d6f0d6d4ed6e088e1ac9d0f895a56ff44
SHA256

a2507542b73d3ea622232e37904e517aea8216be2c0731a7b2afb8b207b9fa80
SHA512

566c9a66e02d5c067f64e80d8d70b33ce55cf5a7edfcd7291c55b4f9780d075523fdf1f14b07dc2ebc11639051995c859ed5af6ac5b4adf0bb036bb18a9c9c51
SSDEEP

24576:Sv1+3spSOxcbyct7f7HxP1K5t+uUzbgAPNWG4STA8ur:7asi5tbUzUMNWwTA8e

Score

N/A

Malware Config

Signatures

Files

a2507542b73d3ea622232e37904e517aea8216be2c0731a7b2afb8b207b9fa80
.dll windows x86

b0d05f70021271cafeccc793eefe105a

Code Sign

02:0f:85:d2:b2:bd:25:8b:2e:dc:cc:1f:80:e5:66:9e
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

27-02-2015 00:00

Not After

27-02-2016 23:59

Subject

CN=Yumon System S.L.,O=Yumon System S.L.,L=Barcelona,ST=Barcelona,C=ES

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

62:08:31:e7:3f:d6:3b:f2:23:26:d8:08:3c:a5:e8:03:19:6e:42:57
Signer

Actual PE Digest

62:08:31:e7:3f:d6:3b:f2:23:26:d8:08:3c:a5:e8:03:19:6e:42:57

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Yumon System S.L.,O=Yumon System S.L.,L=Barcelona,ST=Barcelona,C=ES

18-10-2022 20:51
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetProcessHeap
CreateFileA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
VirtualFree
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
HeapAlloc
GetConsoleMode
GetConsoleCP
GetStartupInfoA
SetHandleCount
OutputDebugStringW
GetFileType
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
GetSystemInfo
VirtualAlloc
GetModuleFileNameA
RaiseException
ExitProcess
Sleep
RtlUnwind
IsBadReadPtr
HeapValidate
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
SetEndOfFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetCurrentProcess
LoadLibraryA
GlobalFindAtomW
GetVersionExA
lstrlenA
GetAtomNameW
GlobalGetAtomNameW
GetModuleHandleA
CompareStringW
GlobalFlags
InterlockedIncrement
LoadLibraryW
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
InterlockedDecrement
GetCurrentProcessId
GlobalAddAtomW
SetEvent
SetLastError
GlobalFree
GetTempPathW
GlobalUnlock
FormatMessageW
LocalFree
GlobalLock
lstrcmpW
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
GetCurrentThreadId
GetLocaleInfoW
GetModuleHandleW
GetProcAddress
GetModuleFileNameW
GetLastError
WideCharToMultiByte
lstrlenW
CopyFileW
GetCommandLineA
FindResourceW
LoadResource
LockResource
SizeofResource
MultiByteToWideChar
CloseHandle
WaitForSingleObject
GetExitCodeProcess
GetTempFileNameW
OpenEventA

user32

DestroyWindow
GetDlgItem
GetSystemMetrics
DestroyMenu
LoadAcceleratorsW
GetSysColor
LoadIconW
LoadCursorW
GetForegroundWindow
SetForegroundWindow
GetTopWindow
GetCapture
SetActiveWindow
GetActiveWindow
ShowOwnedPopups
IsWindowVisible
InvalidateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
ScreenToClient
MapWindowPoints
GetClientRect
BringWindowToTop
RegisterWindowMessageW
IsIconic
GetPropW
GetWindowTextW
SetWindowTextW
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameW
UnregisterClassW
LoadMenuW
ModifyMenuW
InsertMenuItemW
GetMenuItemInfoW
EnableMenuItem
CheckMenuItem
CreatePopupMenu
GrayStringW
DrawTextExW
DrawTextW
FillRect
GetSysColorBrush
UnhookWindowsHookEx
GetWindowLongW
GetParent
GetLastActivePopup
IsWindowEnabled
EnableWindow
GetWindowThreadProcessId
SetCursor
GetKeyState
CallNextHookEx
PeekMessageW
SetWindowsHookExW
ValidateRect
LoadStringW
MessageBoxW
DispatchMessageW
GetMenuCheckMarkDimensions
LoadBitmapW
SetMenuItemBitmaps
GetFocus
TabbedTextOutW
PostMessageW
SendMessageW
IsWindow
IsMenu
GetMenuItemCount
GetSubMenu
GetWindowPlacement
SystemParametersInfoA
IntersectRect
OffsetRect
SetWindowPos
SetWindowLongW
GetMessagePos
GetMessageTime
GetMenu
SetMenu
DefWindowProcW
RemovePropW
CallWindowProcW
InflateRect
PtInRect
PostQuitMessage
GetMenuItemID
GetMenuState
SetPropW
GetClassLongW
TrackPopupMenu
WinHelpW
EndDeferWindowPos
CopyRect
DeferWindowPos
EqualRect
AdjustWindowRectEx
SetFocus
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
ShowWindow
SetRectEmpty
ReleaseCapture
GetClipboardFormatNameA
GetClipboardFormatNameW
UnpackDDElParam
TranslateAcceleratorW
ReuseDDElParam
SystemParametersInfoW
GetDesktopWindow
BeginDeferWindowPos

gdi32

CreateFontIndirectW
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
PtVisible
RectVisible
BitBlt
GetPixel
TextOutW
CreatePatternBrush
Escape
DeleteObject
DeleteDC
SaveDC
RestoreDC
SetBkColor
SetBkMode
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
CreateSolidBrush
GetObjectType
GetStockObject
GetObjectW
CreateBitmap
ExtTextOutW
GetDeviceCaps
GetTextExtentPoint32W

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

OpenThreadToken
SetThreadToken
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RevertToSelf

shell32

DragFinish
DragQueryFileW
ShellExecuteExW

shlwapi

PathFindExtensionW
PathFindFileNameW

ole32

StringFromCLSID
CoTaskMemFree

oleaut32

VariantChangeType
VariantClear
VariantInit

oleacc

LresultFromObject
CreateStdAccessibleObject

Exports

Exports

CPlApplet

Sections

.text
Size: 409KB - Virtual size: 409KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 668B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0d05f70021271cafeccc793eefe105a

Code Sign

02:0f:85:d2:b2:bd:25:8b:2e:dc:cc:1f:80:e5:66:9eCertificate

Extended Key Usages

Key Usages

62:08:31:e7:3f:d6:3b:f2:23:26:d8:08:3c:a5:e8:03:19:6e:42:57Signer

Signature Validations

Verification

18-10-2022 20:51 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

oleacc

Exports

Exports

Sections

.text Size: 409KB - Virtual size: 409KB

.rdata Size: 118KB - Virtual size: 118KB

.data Size: 10KB - Virtual size: 27KB

.rsrc Size: 1024B - Virtual size: 668B

.reloc Size: 64KB - Virtual size: 64KB

02:0f:85:d2:b2:bd:25:8b:2e:dc:cc:1f:80:e5:66:9e
Certificate

62:08:31:e7:3f:d6:3b:f2:23:26:d8:08:3c:a5:e8:03:19:6e:42:57
Signer

18-10-2022 20:51
Valid: false

.text
Size: 409KB - Virtual size: 409KB

.rdata
Size: 118KB - Virtual size: 118KB

.data
Size: 10KB - Virtual size: 27KB

.rsrc
Size: 1024B - Virtual size: 668B

.reloc
Size: 64KB - Virtual size: 64KB