a262e279eea9f51e4a40be36df902491b7cfe84d162f97c484bbf122896f3687

Sharing

Copy URL Twitter E-mail

General

Target

a262e279eea9f51e4a40be36df902491b7cfe84d162f97c484bbf122896f3687
Size

297KB
MD5

84a40017b5df4b54f94f931c61c924c2
SHA1

a01a3aebcf371ea39f8448c8799a225ba7e72679
SHA256

a262e279eea9f51e4a40be36df902491b7cfe84d162f97c484bbf122896f3687
SHA512

4c7115165220d81f978ccc3955f10988e12811667f29dec53113ec27097b155896551caf0d49afbac4e777b6e1a904b426c7378eaccf2bd80e341d9d41afdbdd
SSDEEP

6144:SjhawZHWSIg118HWULKjC7Vif1mO45x9VN0cp0cyIn:GljIaC7Vy45x9ko0cyIn

Score

N/A

Malware Config

Signatures

Files

a262e279eea9f51e4a40be36df902491b7cfe84d162f97c484bbf122896f3687
.exe windows x86

f35cc01b7d289ed94070fed4042cb33d

Code Sign

4c:35:75:3f:cf:2a:de:ad:46:0c:1f:dd:50:bf:2e:14
Certificate

Issuer

CN=12361235123

Not Before

26/02/2012, 20:29

Not After

31/12/2039, 23:59

Subject

CN=12361235123

Extended Key Usages

ExtKeyUsageCodeSigning

00:30:fa:f0:f1:55:73:53:d0:f3:9a:ce:26:58:c9:07:7c:a8:1d:ae
Signer

Actual PE Digest

00:30:fa:f0:f1:55:73:53:d0:f3:9a:ce:26:58:c9:07:7c:a8:1d:ae

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=12361235123

28/10/2022, 15:16
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW
lstrlenW
lstrcpyW
CreateFileW
VirtualAlloc

advapi32

RegOpenKeyExW

comctl32

ord13
ord15
PropertySheet
CreateToolbarEx
ImageList_DragMove
ImageList_Merge
ImageList_LoadImageW
ImageList_GetDragImage
ImageList_Copy
ImageList_SetOverlayImage
ImageList_Write
ord16
CreateStatusWindowW
CreatePropertySheetPageW
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_Remove
ImageList_DragLeave
ord7
ImageList_Read
ord5
ImageList_ReplaceIcon
FlatSB_SetScrollInfo
InitMUILanguage
ImageList_SetDragCursorImage
FlatSB_EnableScrollBar
FlatSB_SetScrollProp
ImageList_SetFilter
ImageList_Duplicate
ord17
FlatSB_ShowScrollBar
ImageList_SetBkColor
InitCommonControlsEx
FlatSB_GetScrollPos
CreateStatusWindow
ImageList_LoadImageA
DestroyPropertySheetPage
DrawStatusTextW
FlatSB_GetScrollProp
ord8
ImageList_Draw
ImageList_BeginDrag
ImageList_Add
FlatSB_SetScrollRange
ImageList_AddIcon
ImageList_Create
InitializeFlatSB
_TrackMouseEvent
ImageList_EndDrag
ImageList_GetIconSize
ImageList_SetImageCount
ord2
ImageList_Replace

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text11
Size: 273KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text12
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textMM3
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM4
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM1
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM5
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM6
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM7
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM8
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM9
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textM10
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textM11
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textM12
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f35cc01b7d289ed94070fed4042cb33d

Code Sign

4c:35:75:3f:cf:2a:de:ad:46:0c:1f:dd:50:bf:2e:14Certificate

Extended Key Usages

00:30:fa:f0:f1:55:73:53:d0:f3:9a:ce:26:58:c9:07:7c:a8:1d:aeSigner

Signature Validations

Verification

28/10/2022, 15:16 Valid: false

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

Sections

.text Size: 3KB - Virtual size: 2KB

.text11 Size: 273KB - Virtual size: 273KB

.text12 Size: 1024B - Virtual size: 912B

.textMM3 Size: 512B - Virtual size: 500B

.textMM4 Size: 512B - Virtual size: 500B

.textMM1 Size: 512B - Virtual size: 500B

.textMM5 Size: 512B - Virtual size: 500B

.textMM6 Size: 512B - Virtual size: 500B

.textMM7 Size: 512B - Virtual size: 500B

.textMM8 Size: 512B - Virtual size: 500B

.textMM9 Size: 512B - Virtual size: 500B

.textM10 Size: 512B - Virtual size: 500B

.textM11 Size: 512B - Virtual size: 500B

.textM12 Size: 512B - Virtual size: 500B

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 512B - Virtual size: 500B

4c:35:75:3f:cf:2a:de:ad:46:0c:1f:dd:50:bf:2e:14
Certificate

00:30:fa:f0:f1:55:73:53:d0:f3:9a:ce:26:58:c9:07:7c:a8:1d:ae
Signer

28/10/2022, 15:16
Valid: false

.text
Size: 3KB - Virtual size: 2KB

.text11
Size: 273KB - Virtual size: 273KB

.text12
Size: 1024B - Virtual size: 912B

.textMM3
Size: 512B - Virtual size: 500B

.textMM4
Size: 512B - Virtual size: 500B

.textMM1
Size: 512B - Virtual size: 500B

.textMM5
Size: 512B - Virtual size: 500B

.textMM6
Size: 512B - Virtual size: 500B

.textMM7
Size: 512B - Virtual size: 500B

.textMM8
Size: 512B - Virtual size: 500B

.textMM9
Size: 512B - Virtual size: 500B

.textM10
Size: 512B - Virtual size: 500B

.textM11
Size: 512B - Virtual size: 500B

.textM12
Size: 512B - Virtual size: 500B

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 512B - Virtual size: 500B