General

Malware Config

Signatures

Files

• 9e7606f964817dff4eda3dc4dd33563bd7305d8c216d2fa8fbd1ef18437b2c66

  .exe windows x86

  f34d5f2d4577ed6d9ceec516c1f5a744

  
  

  Code Sign

  2f:d9:13:0f:6a:cc:51:87:4f:2b:6c:49:be:05:e4:4d

  Certificate

  Issuer

  CN={75F8BB5A-A5BE-4EED-BD1C-7F6E55702F48}

  Not Before

  24-05-2014 21:19

  Not After

  25-05-2015 03:19

  Subject

  CN={75F8BB5A-A5BE-4EED-BD1C-7F6E55702F48}

  fe:a8:e7:d0:85:3b:81:52:1c:47:1e:1a:7b:b3:b3:0a:20:9c:11:c2

  Signer

  Actual PE Digest

  fe:a8:e7:d0:85:3b:81:52:1c:47:1e:1a:7b:b3:b3:0a:20:9c:11:c2

  Digest Algorithm

  sha1

  PE Digest Matches

  true

  Signature Validations

  Trusted

  false

  Verification

  Signing Certificate

  CN={75F8BB5A-A5BE-4EED-BD1C-7F6E55702F48}

  17-11-2022 13:20

  Valid: false

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  mscoree

  _CorExeMain

  Sections

  .text

  Size: 274KB - Virtual size: 273KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1024B - Virtual size: 1024B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ