ab4326759079c0bcd6c10c1fc79294000791f8f4c724600073e1091556236b0a

Sharing

Copy URL Twitter E-mail

General

Target

ab4326759079c0bcd6c10c1fc79294000791f8f4c724600073e1091556236b0a
Size

60KB
MD5

006f1c1745f26f5b11ed3f6dac179564
SHA1

9a3cc44f378ef35da9407c034ebe32f04651e737
SHA256

ab4326759079c0bcd6c10c1fc79294000791f8f4c724600073e1091556236b0a
SHA512

fe76341e768616f0ffbacfd84207063fb2e1a45f5b967de53a2e90e3f1dbf93ffca01c76a52e2f40b6a26470a7ffd79887f1c6558b52b92803395e517d6a4550
SSDEEP

1536:RVqDp/3AHvxMqhkRo35DFn25IgDTBWC4o0:RVS/3AHaqcvI6TIC47

Score

N/A

Malware Config

Signatures

Files

ab4326759079c0bcd6c10c1fc79294000791f8f4c724600073e1091556236b0a
.exe windows x64

Code Sign

61:eb:51:85:86:d5:d0:88:45:31:d7:fb:c0:31:6b:69
Certificate

Issuer

CN=TaleWorlds Entertainment

Not Before

24/05/2018, 20:55

Not After

31/12/2039, 23:59

Subject

CN=TaleWorlds Entertainment

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

Issuer

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2014, 00:00

Not After

22/10/2024, 00:00

Subject

CN=DigiCert Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/11/2006, 00:00

Not After

10/11/2021, 00:00

Subject

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4c:2a:94:95:92:8e:78:ba:92:5a:83:e8:cc:08:db:4d:e1:6a:ef:84
Signer

Actual PE Digest

4c:2a:94:95:92:8e:78:ba:92:5a:83:e8:cc:08:db:4d:e1:6a:ef:84

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=TaleWorlds Entertainment

19/04/2020, 11:18
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Code Sign

61:eb:51:85:86:d5:d0:88:45:31:d7:fb:c0:31:6b:69Certificate

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66Certificate

Extended Key Usages

Key Usages

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1bCertificate

Extended Key Usages

Key Usages

4c:2a:94:95:92:8e:78:ba:92:5a:83:e8:cc:08:db:4d:e1:6a:ef:84Signer

Signature Validations

Verification

19/04/2020, 11:18 Valid: false

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 34KB - Virtual size: 34KB

.rsrc Size: 20KB - Virtual size: 19KB

61:eb:51:85:86:d5:d0:88:45:31:d7:fb:c0:31:6b:69
Certificate

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

4c:2a:94:95:92:8e:78:ba:92:5a:83:e8:cc:08:db:4d:e1:6a:ef:84
Signer

19/04/2020, 11:18
Valid: false

.text
Size: 34KB - Virtual size: 34KB

.rsrc
Size: 20KB - Virtual size: 19KB