af0c4286655d02a0a214203ffdc5c7e5963ab29abbdab51019b98f2e399eb35b

Sharing

Copy URL

Twitter E-mail

General

Target

af0c4286655d02a0a214203ffdc5c7e5963ab29abbdab51019b98f2e399eb35b
Size

145KB
MD5

75af89de950af18ef1c80e3e3bfbd33a
SHA1

fdfc7d5314d37c337b836c7e977f8c45cb1894e2
SHA256

af0c4286655d02a0a214203ffdc5c7e5963ab29abbdab51019b98f2e399eb35b
SHA512

575f734733a6e91d8783c5fd2d6fab66364cad0ee6f5ad9a44f0a5beedbefc02e059e8beb03ad0db94283751f0682b33599ef7dcbb49a6fe348a0ff9a8cb67e6
SSDEEP

1536:1+WpRyXV82EknYYPQHqF8SKA1xqSB5adBgr6KLhbn1vMTThIjqTBM429yU:YWyXbTnYYIHq2S3nB5iBjKt56IjYB23

Score

N/A

Malware Config

Signatures

Files

af0c4286655d02a0a214203ffdc5c7e5963ab29abbdab51019b98f2e399eb35b
.exe windows x86

428d2928a09f946c2e830d6c3c105dfc

Code Sign

6f:2b:3d:33:a7:59:29:ad:45:61:dc:b9:e0:51:cf:58
Certificate

Issuer

CN=3SrG4gdy1InpKAqzpKkQ3msikcpu1ZyqmLLS5GkC2z7Zctqzktp9I2gPieDDL2SbR6OWu8TIIfXDxDHtiDhJCKDKWBtUgqkWf3fbATgakfFdiMkmoh6mJSC6sbIc9vdYYtHNXtdHSG5zePSFu53GhZPjHocfmHpXiUTVuuatdn1prNvhdnnjMMpernJJ6FiXdvBBlIY3TNlohSPtXalH28178WghRaNtx6zKW67mk4Y3ls5WX7cg61QC2wGlq7omTbBf1IvLFUQOA1WLcwhimDDOddVlOC3UCQwNyRF4QOV3beGrpnWYrkCcvL1ypVgRSW

Not Before

10-11-2012 02:14

Not After

31-12-2039 23:59

Subject

CN=3SrG4gdy1InpKAqzpKkQ3msikcpu1ZyqmLLS5GkC2z7Zctqzktp9I2gPieDDL2SbR6OWu8TIIfXDxDHtiDhJCKDKWBtUgqkWf3fbATgakfFdiMkmoh6mJSC6sbIc9vdYYtHNXtdHSG5zePSFu53GhZPjHocfmHpXiUTVuuatdn1prNvhdnnjMMpernJJ6FiXdvBBlIY3TNlohSPtXalH28178WghRaNtx6zKW67mk4Y3ls5WX7cg61QC2wGlq7omTbBf1IvLFUQOA1WLcwhimDDOddVlOC3UCQwNyRF4QOV3beGrpnWYrkCcvL1ypVgRSW

Extended Key Usages

ExtKeyUsageCodeSigning

f7:69:68:13:fc:3d:ce:ab:56:04:49:49:4d:7a:cc:a7:f4:8a:35:ff
Signer

Actual PE Digest

f7:69:68:13:fc:3d:ce:ab:56:04:49:49:4d:7a:cc:a7:f4:8a:35:ff

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=3SrG4gdy1InpKAqzpKkQ3msikcpu1ZyqmLLS5GkC2z7Zctqzktp9I2gPieDDL2SbR6OWu8TIIfXDxDHtiDhJCKDKWBtUgqkWf3fbATgakfFdiMkmoh6mJSC6sbIc9vdYYtHNXtdHSG5zePSFu53GhZPjHocfmHpXiUTVuuatdn1prNvhdnnjMMpernJJ6FiXdvBBlIY3TNlohSPtXalH28178WghRaNtx6zKW67mk4Y3ls5WX7cg61QC2wGlq7omTbBf1IvLFUQOA1WLcwhimDDOddVlOC3UCQwNyRF4QOV3beGrpnWYrkCcvL1ypVgRSW

28-11-2022 11:52
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
DeviceIoControl
WaitForSingleObject
CreateEventA
lstrlenA
FormatMessageA
LocalFree
GetOverlappedResult
DuplicateHandle
GetCurrentProcess
OpenProcess
ExitProcess
GetModuleHandleA
GetCommandLineA
GetCommConfig
CloseHandle
GetTickCount
lstrcpyA
GetCPInfo
CreateFileW
VirtualAlloc

user32

DestroyIcon
SendDlgItemMessageA
wsprintfA
SetWindowTextA
LoadImageA
ScreenToClient
ReleaseDC
SendMessageA
GetDC
GetWindowRect
GetDlgItem
LoadStringA
KillTimer
GetWindowTextA
SetDlgItemTextA
PostQuitMessage
ShowWindow
SetTimer
SetForegroundWindow
DestroyWindow
DefWindowProcA
UnregisterClassA
DispatchMessageA
TranslateMessage
IsDialogMessageA
GetMessageA
CreateDialogParamA
RegisterClassA
LoadCursorA
LoadIconA
LoadBitmapA
SetWindowPos

gdi32

GetTextExtentPoint32A
DeleteObject
SelectObject

advapi32

RegOpenKeyW

shell32

Shell_NotifyIconA

Sections

.text
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

428d2928a09f946c2e830d6c3c105dfc

Code Sign

6f:2b:3d:33:a7:59:29:ad:45:61:dc:b9:e0:51:cf:58Certificate

Extended Key Usages

f7:69:68:13:fc:3d:ce:ab:56:04:49:49:4d:7a:cc:a7:f4:8a:35:ffSigner

Signature Validations

Verification

28-11-2022 11:52 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 138KB - Virtual size: 138KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 496B

.reloc Size: 512B - Virtual size: 388B

6f:2b:3d:33:a7:59:29:ad:45:61:dc:b9:e0:51:cf:58
Certificate

f7:69:68:13:fc:3d:ce:ab:56:04:49:49:4d:7a:cc:a7:f4:8a:35:ff
Signer

28-11-2022 11:52
Valid: false

.text
Size: 138KB - Virtual size: 138KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 496B

.reloc
Size: 512B - Virtual size: 388B