6bf871c26a40a5f24f510aca02929f2fa0d824a8385d6035a9659e985ea2a515

Sharing

Copy URL Twitter E-mail

General

Target

6bf871c26a40a5f24f510aca02929f2fa0d824a8385d6035a9659e985ea2a515
Size

304KB
MD5

da2d4b936155e67804fedb16eaeaec01
SHA1

d2de6eb0ca65152089a945c5b9118bb1af68569d
SHA256

6bf871c26a40a5f24f510aca02929f2fa0d824a8385d6035a9659e985ea2a515
SHA512

e1a2e416c1aaa82140a3da670e924b8d49839d40338bf2db0f8aac15d23c668f0b196c48153ebce9b79524e3e594a9bee6c43495d9456f5b15330cd3937c29a9
SSDEEP

6144:yt9CLuK7K47+46NvC24o3VO7fy9JTeUCFZL4w9rG8FzaB:meHK47+M2fmZp9rpY

Score

N/A

Malware Config

Signatures

Files

6bf871c26a40a5f24f510aca02929f2fa0d824a8385d6035a9659e985ea2a515
.exe windows x86

a06adcd0ef11aac2262e01ec5331c94e

Code Sign

06:fd:4f:9e:33:b5:3b:45:b6:2d:ac:a3:90:73:28:77
Certificate

Issuer

CN=79229296999227849252775292238874537894986721514254149244922311483581745953811599942965176938732419549571451554395278282964751258649638386159866553997462343

Not Before

17/01/2013, 15:44

Not After

31/12/2039, 23:59

Subject

CN=79229296999227849252775292238874537894986721514254149244922311483581745953811599942965176938732419549571451554395278282964751258649638386159866553997462343

Extended Key Usages

ExtKeyUsageCodeSigning

1d:1c:b0:24:99:fd:f6:65:ca:4d:e5:41:8d:06:2a:24:b8:83:cf:21
Signer

Actual PE Digest

1d:1c:b0:24:99:fd:f6:65:ca:4d:e5:41:8d:06:2a:24:b8:83:cf:21

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=79229296999227849252775292238874537894986721514254149244922311483581745953811599942965176938732419549571451554395278282964751258649638386159866553997462343

01/12/2022, 14:34
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
VirtualAlloc
LoadLibraryExA
GetProcAddress

user32

LoadIconW
LoadCursorA

gdi32

GetStockObject

msvcrt

memset

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text3
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 277KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a06adcd0ef11aac2262e01ec5331c94e

Code Sign

06:fd:4f:9e:33:b5:3b:45:b6:2d:ac:a3:90:73:28:77Certificate

Extended Key Usages

1d:1c:b0:24:99:fd:f6:65:ca:4d:e5:41:8d:06:2a:24:b8:83:cf:21Signer

Signature Validations

Verification

01/12/2022, 14:34 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Sections

.text Size: 16KB - Virtual size: 15KB

.text3 Size: 1KB - Virtual size: 1KB

.text2 Size: 1KB - Virtual size: 1KB

.data Size: 277KB - Virtual size: 276KB

.rsrc Size: 2KB - Virtual size: 2KB

06:fd:4f:9e:33:b5:3b:45:b6:2d:ac:a3:90:73:28:77
Certificate

1d:1c:b0:24:99:fd:f6:65:ca:4d:e5:41:8d:06:2a:24:b8:83:cf:21
Signer

01/12/2022, 14:34
Valid: false

.text
Size: 16KB - Virtual size: 15KB

.text3
Size: 1KB - Virtual size: 1KB

.text2
Size: 1KB - Virtual size: 1KB

.data
Size: 277KB - Virtual size: 276KB

.rsrc
Size: 2KB - Virtual size: 2KB