90223b243842f0b4e9f495396882c8278a9da6102913f038807505118ec2d621

Sharing

Copy URL Twitter E-mail

General

Target

90223b243842f0b4e9f495396882c8278a9da6102913f038807505118ec2d621
Size

297KB
MD5

06862325f46718f538099ce63017c573
SHA1

435837494bad34d4c2314a3ebd03be596d9eae44
SHA256

90223b243842f0b4e9f495396882c8278a9da6102913f038807505118ec2d621
SHA512

57cbd37d6ff8c85c7b851e536b0318849f085191640d461cae93d409e9ba767fd738806f3c2b46a03c9541999bbfd90856376e72eab226d9764ad127a42a464f
SSDEEP

6144:NFi2PKaUk10njJ7L0WY7LYAJAxZBNLamMp8IMiNg6Q:NFBhUkCJ7K78VxZeR1Ng6Q

Score

N/A

Malware Config

Signatures

Files

90223b243842f0b4e9f495396882c8278a9da6102913f038807505118ec2d621
.exe windows x86

d84da2b912d5d9c3ace54c756010124d

Code Sign

66:d0:4c:1a:1d:f9:a8:40:bd:11:08:53:e6:e6:8b:8c
Certificate

Issuer

CN=a

Not Before

21/03/2013, 04:44

Not After

31/12/2039, 23:59

Subject

CN=a

Extended Key Usages

ExtKeyUsageCodeSigning

6b:e7:cc:3c:77:6f:95:6d:39:df:15:26:16:a6:9f:c3:a0:b4:73:6d
Signer

Actual PE Digest

6b:e7:cc:3c:77:6f:95:6d:39:df:15:26:16:a6:9f:c3:a0:b4:73:6d

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=a

04/11/2022, 15:41
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
ExitProcess
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStrings
GetEnvironmentStringsW
GetFileSize
GetFileType
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetStdHandle
VirtualAlloc
GetTickCount
GetVersionExA
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
InterlockedExchange
LoadLibraryA
QueryPerformanceCounter
RtlUnwind
SetEndOfFile
SetFilePointer
SetHandleCount
TerminateProcess
UnhandledExceptionFilter
VirtualFree
VirtualQuery
WideCharToMultiByte
WriteFile
lstrlenA
GetSystemTimeAsFileTime
Sleep

user32

CharPrevA
CheckDlgButton
CreateDialogParamA
DestroyWindow
DialogBoxParamA
DispatchMessageA
EndDialog
GetDesktopWindow
GetDlgItem
GetParent
GetWindowRect
IsDialogMessageA
IsDlgButtonChecked
LoadStringA
MessageBoxA
OffsetRect
PeekMessageA
SendMessageA
SetDlgItemTextA
SetFocus
SetForegroundWindow
SetWindowPos
ShowWindow
SystemParametersInfoA
TranslateMessage
LoadIconA
LoadCursorA

advapi32

RegOpenKeyW

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 267KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d84da2b912d5d9c3ace54c756010124d

Code Sign

66:d0:4c:1a:1d:f9:a8:40:bd:11:08:53:e6:e6:8b:8cCertificate

Extended Key Usages

6b:e7:cc:3c:77:6f:95:6d:39:df:15:26:16:a6:9f:c3:a0:b4:73:6dSigner

Signature Validations

Verification

04/11/2022, 15:41 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 8KB - Virtual size: 7KB

.data Size: 267KB - Virtual size: 266KB

.data2 Size: 11KB - Virtual size: 10KB

.rdata2 Size: 1024B - Virtual size: 1000B

.rsrc Size: 1024B - Virtual size: 864B

66:d0:4c:1a:1d:f9:a8:40:bd:11:08:53:e6:e6:8b:8c
Certificate

6b:e7:cc:3c:77:6f:95:6d:39:df:15:26:16:a6:9f:c3:a0:b4:73:6d
Signer

04/11/2022, 15:41
Valid: false

.text
Size: 8KB - Virtual size: 7KB

.data
Size: 267KB - Virtual size: 266KB

.data2
Size: 11KB - Virtual size: 10KB

.rdata2
Size: 1024B - Virtual size: 1000B

.rsrc
Size: 1024B - Virtual size: 864B