8296a82afdc0672ec7be70ca592b1bc215a5ac3a6965b3ee04d58d3c8bd3fa5e

Sharing

Copy URL Twitter E-mail

General

Target

8296a82afdc0672ec7be70ca592b1bc215a5ac3a6965b3ee04d58d3c8bd3fa5e
Size

16KB
MD5

d1cae3de96a9592b1d62f3575df32961
SHA1

ec7d2017e99a821952570c6403a0039e09a72e3b
SHA256

8296a82afdc0672ec7be70ca592b1bc215a5ac3a6965b3ee04d58d3c8bd3fa5e
SHA512

823e7f6ff5b48c75178becb7b76d1a3b30106abcb82bc1eef1a362df1ca356cd9efc006adeb6083bc04c256b44e8cf9078a81d258faccc0befdc340b25fe429e
SSDEEP

192:ZvTl1Bva5ySFagI8q/nKBPhISG62pW/rJRgRBtD/rVND3koxYczh4ZoApr:1hOySFagz+SK962pGNRgrtD/9z1Apr

Score

N/A

Malware Config

Signatures

Files

8296a82afdc0672ec7be70ca592b1bc215a5ac3a6965b3ee04d58d3c8bd3fa5e
.exe windows x86

a73818ee6ce929a61f3d475dec82923d

Code Sign

78:64:b8:3d:5e:1c:99:46:b0:af:fb:7b:34:75:94:ca
Certificate

Issuer

CN=55121212512

Not Before

14/02/2012, 04:59

Not After

31/12/2039, 23:59

Subject

CN=55121212512

Extended Key Usages

ExtKeyUsageCodeSigning

95:92:ea:63:76:44:8c:62:05:1c:03:72:b1:66:b1:8f:56:3c:3f:3b
Signer

Actual PE Digest

95:92:ea:63:76:44:8c:62:05:1c:03:72:b1:66:b1:8f:56:3c:3f:3b

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=55121212512

28/11/2022, 11:52
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA

msvcrt

memset

user32

LoadBitmapA

advapi32

RegOpenKeyExA

version

VerQueryValueA
VerQueryValueW
GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerFindFileA
VerFindFileW
VerInstallFileA
VerInstallFileW

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a73818ee6ce929a61f3d475dec82923d

Code Sign

78:64:b8:3d:5e:1c:99:46:b0:af:fb:7b:34:75:94:caCertificate

Extended Key Usages

95:92:ea:63:76:44:8c:62:05:1c:03:72:b1:66:b1:8f:56:3c:3f:3bSigner

Signature Validations

Verification

28/11/2022, 11:52 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

version

Sections

.text Size: 2KB - Virtual size: 1KB

.text1 Size: 1024B - Virtual size: 600B

.text2 Size: 8KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 88B

.rsrc Size: 2KB - Virtual size: 1KB

78:64:b8:3d:5e:1c:99:46:b0:af:fb:7b:34:75:94:ca
Certificate

95:92:ea:63:76:44:8c:62:05:1c:03:72:b1:66:b1:8f:56:3c:3f:3b
Signer

28/11/2022, 11:52
Valid: false

.text
Size: 2KB - Virtual size: 1KB

.text1
Size: 1024B - Virtual size: 600B

.text2
Size: 8KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 88B

.rsrc
Size: 2KB - Virtual size: 1KB