58ba6b0d6ca5b907b74596a369b37009ead8cc97c602d8d509e00fca5a9565d1

Sharing

Copy URL Twitter E-mail

General

Target

58ba6b0d6ca5b907b74596a369b37009ead8cc97c602d8d509e00fca5a9565d1
Size

131KB
MD5

7007074b2b11bb8a6bf0f82104722572
SHA1

a8f37c9d6e83c01c3959ab162f6af0e6db398c15
SHA256

58ba6b0d6ca5b907b74596a369b37009ead8cc97c602d8d509e00fca5a9565d1
SHA512

e14d76f4f79b26af89e684aa31afb56784c60d03c230961db25d5d656643c8412cf455d54ddcb689887a67618c240c0d0c320263c8b52c0095dca16b058ce732
SSDEEP

1536:RU4vpHnfw6ejgDH+p56AgiXMYe+bHhwif5IoCVJGndAfYO5SXlCkvzPBwrW9e55y:RVv4MepQhvI3KoCzGdAh5WlCI1e55P+d

Score

N/A

Malware Config

Signatures

Files

58ba6b0d6ca5b907b74596a369b37009ead8cc97c602d8d509e00fca5a9565d1
.exe windows x86

08195713edc8e51078e183eef559dfa4

Code Sign

45:07:17:8e:65:74:21:bd:45:8a:a6:3c:c8:c7:73:a6
Certificate

Issuer

CN=qZrEUcqnnXtiIF293BDokozhOCqsVnbJDtd9AHXbvgBVSqfkpGu4iBnnWcIw6wbCEapfUYb8MjLmXGaBScIyRPDiSK1CZLK8S836GOUSwtf2OaZzVX5UaUeNtUMBmkztRYABp2XnaAGcWxS6dnHV1FPYLMR8updajQSubvYMl4cRwyPmtj9fQZ7cX2ABoga15qaeN6zCQOdSnZOLGemcNLz4rPAeJbN6bQ67IIeFAjFNYED3U4IWEWHuFVYYPtrLNTKb3mlXEvOZtn5drkZsOtOFkygBDvhGgOCfvYeRjWoD

Not Before

06/11/2012, 06:24

Not After

31/12/2039, 23:59

Subject

CN=qZrEUcqnnXtiIF293BDokozhOCqsVnbJDtd9AHXbvgBVSqfkpGu4iBnnWcIw6wbCEapfUYb8MjLmXGaBScIyRPDiSK1CZLK8S836GOUSwtf2OaZzVX5UaUeNtUMBmkztRYABp2XnaAGcWxS6dnHV1FPYLMR8updajQSubvYMl4cRwyPmtj9fQZ7cX2ABoga15qaeN6zCQOdSnZOLGemcNLz4rPAeJbN6bQ67IIeFAjFNYED3U4IWEWHuFVYYPtrLNTKb3mlXEvOZtn5drkZsOtOFkygBDvhGgOCfvYeRjWoD

Extended Key Usages

ExtKeyUsageCodeSigning

08:03:bc:60:84:75:56:4d:80:0f:8b:03:64:ce:13:91:4e:9f:fa:df
Signer

Actual PE Digest

08:03:bc:60:84:75:56:4d:80:0f:8b:03:64:ce:13:91:4e:9f:fa:df

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=qZrEUcqnnXtiIF293BDokozhOCqsVnbJDtd9AHXbvgBVSqfkpGu4iBnnWcIw6wbCEapfUYb8MjLmXGaBScIyRPDiSK1CZLK8S836GOUSwtf2OaZzVX5UaUeNtUMBmkztRYABp2XnaAGcWxS6dnHV1FPYLMR8updajQSubvYMl4cRwyPmtj9fQZ7cX2ABoga15qaeN6zCQOdSnZOLGemcNLz4rPAeJbN6bQ67IIeFAjFNYED3U4IWEWHuFVYYPtrLNTKb3mlXEvOZtn5drkZsOtOFkygBDvhGgOCfvYeRjWoD

24/11/2022, 14:54
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
CreateFileW
ExitProcess
VirtualAlloc
GetCurrentProcessId
LoadLibraryW
GetComputerNameW
GlobalDeleteAtom
FreeLibrary
GetProcAddress
GetModuleHandleW
LocalUnlock
LocalLock
GlobalUnlock
WideCharToMultiByte
GlobalAddAtomW
GetPrivateProfileIntW
GlobalLock
GetPrivateProfileStringW
lstrlenW
lstrcpyW
GetLastError
WritePrivateProfileStringW
LoadLibraryA
GetACP
IsDBCSLeadByte
LocalFree
MultiByteToWideChar
LocalAlloc
GlobalFree
GetModuleHandleA
GlobalAlloc
GetCommandLineA
GetVersion
GetSystemDirectoryW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
HeapFree
HeapAlloc
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
ReadFile
SetFilePointer
SetStdHandle
FlushFileBuffers
CloseHandle
GlobalSize
GetStartupInfoA

user32

wsprintfW
GetMenu
EndPaint
SetFocus
DdeUninitialize
DdeFreeStringHandle
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
GetMessageW
RegisterClassW
LoadCursorW
LoadIconW
MessageBoxW
SendMessageW
FindWindowW
SetWindowPos
AppendMenuW
GetSystemMenu
ShowWindow
UpdateWindow
SetWindowPlacement
GetSysColor
CreateWindowExW
RegisterClipboardFormatW
DdeGetLastError
DdeNameService
DdeCreateStringHandleW
DdeInitializeW
MessageBeep
LoadStringW
LoadAcceleratorsW
GetSystemMetrics
DefWindowProcW
WinHelpW
CallWindowProcW
CharNextW
GetClientRect
ReleaseDC
GetDC
IsIconic
SendDlgItemMessageW
DdeConnect
CharUpperW
DrawIcon
BeginPaint
SetWindowTextW
DdeClientTransaction
DdeKeepStringHandle
FlashWindow
KillTimer
InvalidateRect
CheckMenuItem
IsClipboardFormatAvailable
EnableMenuItem
DdePostAdvise
DialogBoxParamW
GetDesktopWindow
DdeDisconnect
PostMessageW
SetTimer
DdeQueryStringW
DdeGetData
PostQuitMessage
GetWindowPlacement
DdeAbandonTransaction
MoveWindow
DestroyWindow
SetWindowLongW
GetWindowLongW
CheckDlgButton
DdeCmpStringHandles
DdeAddData
DdeCreateDataHandle
CloseClipboard
GetClipboardData
OpenClipboard
EndDialog

gdi32

SetTextColor
TranslateCharsetInfo
CreatePen
DeleteObject
BitBlt
LineTo
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
SetBkColor
SelectObject
MoveToEx
GetStockObject
GetNearestColor
CreateFontIndirectW

comdlg32

ChooseColorW
ChooseFontW

advapi32

RegOpenKeyExA
RegOpenKeyExW
RegCloseKey
RegCreateKeyExW
RegQueryValueExW
RegQueryValueExA
RegSetValueExW

shell32

ShellAboutW

comctl32

CreateToolbarEx
CreateStatusWindowW

Sections

.text
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata3
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

08195713edc8e51078e183eef559dfa4

Code Sign

45:07:17:8e:65:74:21:bd:45:8a:a6:3c:c8:c7:73:a6Certificate

Extended Key Usages

08:03:bc:60:84:75:56:4d:80:0f:8b:03:64:ce:13:91:4e:9f:fa:dfSigner

Signature Validations

Verification

24/11/2022, 14:54 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

Sections

.text Size: 120KB - Virtual size: 119KB

.rdata3 Size: 1024B - Virtual size: 1000B

.rdata2 Size: 1024B - Virtual size: 1000B

.data Size: 5KB - Virtual size: 4KB

.reloc Size: 1024B - Virtual size: 848B

45:07:17:8e:65:74:21:bd:45:8a:a6:3c:c8:c7:73:a6
Certificate

08:03:bc:60:84:75:56:4d:80:0f:8b:03:64:ce:13:91:4e:9f:fa:df
Signer

24/11/2022, 14:54
Valid: false

.text
Size: 120KB - Virtual size: 119KB

.rdata3
Size: 1024B - Virtual size: 1000B

.rdata2
Size: 1024B - Virtual size: 1000B

.data
Size: 5KB - Virtual size: 4KB

.reloc
Size: 1024B - Virtual size: 848B