3e48e9c5e771c89b52a84ff51f03b8e0893136b6880617b9d31b18cc18ae6122

Sharing

Copy URL Twitter E-mail

General

Target

3e48e9c5e771c89b52a84ff51f03b8e0893136b6880617b9d31b18cc18ae6122
Size

178KB
MD5

7c4593332215113f8f0433fbec31be7a
SHA1

41c8d545fef518a3683aaab7752457ac27482c70
SHA256

3e48e9c5e771c89b52a84ff51f03b8e0893136b6880617b9d31b18cc18ae6122
SHA512

8f6483e03ed73691bc92873af34c58d3d95a7b83b63e6553080b7ec57d245ea5d0702267a3452f274b1fae8bd924f321f0a127f043077cc2051864cb2d10f561
SSDEEP

3072:aj1E1hOenWl9piYVyPLrwsZRoWOW7nugTKb2CW3CDXKCOJvwdd/AHEhPhp+dCuDC:kE1hOenk91VUrwsZRoWOW7nugTKb2CWy

Score

N/A

Malware Config

Signatures

Files

3e48e9c5e771c89b52a84ff51f03b8e0893136b6880617b9d31b18cc18ae6122
.exe windows x86

50ba46d13edb9a9de5d9ccfa17008baa

Code Sign

3d:ab:b8:5c:af:a6:92:41:7d:e8:9a:88:38:b4:ce
Certificate

Issuer

CN=test

Not Before

10/12/2014, 18:48

Not After

31/12/2039, 23:59

Subject

CN=test

59:03:35:94:1a:10:71:d5:ce:d4:07:0e:1f:73:57:4d:57:16:43:ef
Signer

Actual PE Digest

59:03:35:94:1a:10:71:d5:ce:d4:07:0e:1f:73:57:4d:57:16:43:ef

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=test

24/11/2022, 14:54
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GlobalMemoryStatus
GetLocaleInfoA
GetNumberOfConsoleInputEvents
SetConsoleTextAttribute
QueryPerformanceCounter
GlobalLock
WaitForSingleObject
GetTickCount
GetCurrentThread
GetSystemTimeAsFileTime
FormatMessageA
GlobalAlloc
GetConsoleMode
ReadConsoleInputA
CreateEventA
SetConsoleMode
IsProcessorFeaturePresent
GetOverlappedResult
MultiByteToWideChar
GlobalUnlock
GetStdHandle
GetLastError
RemoveDirectoryA
ResetEvent
SetConsoleCtrlHandler
SetConsoleDisplayMode
GetSystemInfo
SetConsoleTitleW
GetModuleHandleA
CancelIo
IsDebuggerPresent
QueryPerformanceFrequency
OutputDebugStringA
SetThreadAffinityMask
GetVersionExA
CloseHandle

user32

OpenClipboard
EmptyClipboard
GetClipboardData
MapVirtualKeyA
GetCursorInfo
CloseClipboard
SetClipboardData

Sections

.text
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50ba46d13edb9a9de5d9ccfa17008baa

Code Sign

3d:ab:b8:5c:af:a6:92:41:7d:e8:9a:88:38:b4:ceCertificate

59:03:35:94:1a:10:71:d5:ce:d4:07:0e:1f:73:57:4d:57:16:43:efSigner

Signature Validations

Verification

24/11/2022, 14:54 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 140KB - Virtual size: 140KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 13KB - Virtual size: 13KB

.rsrc Size: 21KB - Virtual size: 21KB

3d:ab:b8:5c:af:a6:92:41:7d:e8:9a:88:38:b4:ce
Certificate

59:03:35:94:1a:10:71:d5:ce:d4:07:0e:1f:73:57:4d:57:16:43:ef
Signer

24/11/2022, 14:54
Valid: false

.text
Size: 140KB - Virtual size: 140KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 21KB - Virtual size: 21KB