General

Malware Config

Signatures

Files

• 22170077277aa8d7f3fe0e30bcb187cfa7dcda0d018d6cabf1bde17d24fadda8

  .exe windows x86

  f34d5f2d4577ed6d9ceec516c1f5a744

  
  

  Code Sign

  Certificate

  Issuer

  CN=MobileSoft,OU=MobileSoft Ltd.,O=MobileSoft Ltd.,L=London City,ST=London Province,C=uk,1.2.840.113549.1.9.1=#0c12696e666f406d6f62696c65736f66742e756b

  Not Before

  11-02-2015 18:00

  Not After

  11-02-2016 18:00

  Subject

  CN=MobileSoft,OU=MobileSoft Ltd.,O=MobileSoft Ltd.,L=London City,ST=London Province,C=uk,1.2.840.113549.1.9.1=#0c12696e666f406d6f62696c65736f66742e756b

  ac:37:5c:9a:30:d6:e5:88:7f:b2:b4:25:c5:90:fe:49:5e:6c:15:5e

  Signer

  Actual PE Digest

  ac:37:5c:9a:30:d6:e5:88:7f:b2:b4:25:c5:90:fe:49:5e:6c:15:5e

  Digest Algorithm

  sha1

  PE Digest Matches

  true

  Signature Validations

  Trusted

  false

  Verification

  Signing Certificate

  CN=MobileSoft,OU=MobileSoft Ltd.,O=MobileSoft Ltd.,L=London City,ST=London Province,C=uk,1.2.840.113549.1.9.1=#0c12696e666f406d6f62696c65736f66742e756b

  28-11-2022 11:52

  Valid: false

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  mscoree

  _CorExeMain

  Sections

  .text

  Size: 248KB - Virtual size: 247KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 4KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 4KB - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ