4a4074bcb686e96b06418f4754a535d542d644d62f5c77a1658d63ef3da2bd05

Sharing

Copy URL

Twitter E-mail

General

Target

4a4074bcb686e96b06418f4754a535d542d644d62f5c77a1658d63ef3da2bd05
Size

555KB
MD5

7383ed0cf928314b568e3b2e4d6a9b97
SHA1

d9b3bd2a5263acd6fef897fc6f5163c711b96f58
SHA256

4a4074bcb686e96b06418f4754a535d542d644d62f5c77a1658d63ef3da2bd05
SHA512

2e27a5931dbd4aee03c12da4b0f77cfd1c69811efd60f5112646951698a77d5b4ca4390a73f2509302c9afc8dff5eb9d374fad9a4fd10ca222e6ffbd11658be5
SSDEEP

6144:L4pDoxMAkJs/ZpPMus3pSbHpWNTFuF4T+fG1BR3+LrvJNhUNQUR:xkJSvMzUzpUFhPR3+BUOUR

Score

N/A

Malware Config

Signatures

Files

4a4074bcb686e96b06418f4754a535d542d644d62f5c77a1658d63ef3da2bd05
.exe windows x86

48a0f84fac3ee843559fcc6f82808d1c

Code Sign

28:48:7e:8f:ca:19:e7:84:4b:56:8e:4d:6c:4b:81:e2
Certificate

Issuer

CN=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 5233233

Not Before

04-12-2012 17:50

Not After

31-12-2039 23:59

Subject

CN=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 5233233

Extended Key Usages

ExtKeyUsageCodeSigning

82:92:5c:49:3d:75:2f:e8:63:e3:b0:4f:aa:1a:b9:d9:16:27:13:51
Signer

Actual PE Digest

82:92:5c:49:3d:75:2f:e8:63:e3:b0:4f:aa:1a:b9:d9:16:27:13:51

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=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 5233233

01-12-2022 14:34
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
GetStartupInfoA
GetModuleHandleA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
IsValidLocale
LoadLibraryA
GetCurrentProcessId
GetUserDefaultLCID
lstrcpynA
GetCurrentDirectoryW
GetWindowsDirectoryW
SetCurrentDirectoryW
GetDateFormatW
GetTimeFormatW
GetSystemTimeAsFileTime
GetLocalTime
SystemTimeToFileTime
ExpandEnvironmentStringsW
FindFirstFileW
GetTempPathW
GetTempFileNameW
GetModuleFileNameW
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
FormatMessageW
GetSystemDefaultUILanguage
GlobalMemoryStatus
CreateDirectoryW
GlobalFree
GetFileAttributesW
MulDiv
CreateEventA
SetUnhandledExceptionFilter
GetCommandLineW
GetModuleHandleW
WideCharToMultiByte
VirtualFree
GetTempFileNameA
GetWindowsDirectoryA
FileTimeToSystemTime
ExpandEnvironmentStringsA
SearchPathA
GetTempPathA
GetFileAttributesA
CopyFileA
CreateFileA
DeleteFileA
CompareFileTime
CompareStringA
GetLocaleInfoW
FormatMessageA
GetSystemTime
IsBadStringPtrA
IsBadStringPtrW
IsBadWritePtr
ResumeThread
TerminateThread
WaitForMultipleObjects
GetSystemDefaultLCID
lstrcpyW
SetLastError
FlushInstructionCache
lstrcmpiA
lstrcmpA
SetFilePointer
MoveFileExW
SetErrorMode
CreateFileMappingA
CreateMutexA
DuplicateHandle
CreateProcessW
ReleaseMutex
GlobalLock
GlobalUnlock
VirtualQuery
GetSystemInfo
GetVersion
VirtualProtect
FindClose
MoveFileW
LocalAlloc
IsDBCSLeadByteEx
GlobalAlloc
SetThreadLocale
CreateFileMappingW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
LocalFree
OpenEventW
SetEvent
ResetEvent
DeleteFileW
CompareStringW
WriteFile
ReadFile
lstrcpynW
lstrcmpW
lstrlenW
lstrcmpiW
CreateFileW
GetLastError
GetFileSize
MultiByteToWideChar
LoadLibraryW
GetProcAddress
FreeLibrary
GetTickCount
lstrlenA
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
Sleep
CreateEventW
CreateThread
InterlockedDecrement
InterlockedIncrement
WaitForSingleObject
CloseHandle
DeleteCriticalSection
InitializeCriticalSection
GetCurrentThread
FindResourceA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
RaiseException
GetVersionExW

user32

BeginPaint
GetClientRect
EndPaint
PostQuitMessage
DefWindowProcA
CreateWindowExW
CharUpperA
GetClassInfoExA
RegisterClassExA
CreateWindowExA
LoadMenuW
GetDlgItemInt
SetDlgItemInt
CheckRadioButton
LoadIconW
CheckDlgButton
LoadBitmapW
CreateDialogParamW
GetWindowLongA
SetWindowLongA
IsDlgButtonChecked
CloseWindow
GetDlgCtrlID
DrawEdge
GetLastActivePopup
GetAsyncKeyState
GetScrollInfo
CreateAcceleratorTableW
CharNextW
GetClassNameW
DestroyAcceleratorTable
InvalidateRgn
SetCapture
GetWindowTextW
SetWindowTextW
SetDlgItemTextW
ScreenToClient
LoadStringA
ModifyMenuW
SetCursorPos
MessageBoxW
IsDialogMessageW
MessageBeep
SetWindowPos
SetRectEmpty
CreatePopupMenu
BeginDeferWindowPos
EndDeferWindowPos
LoadBitmapA
RegisterClassW
RegisterWindowMessageW
GetDoubleClickTime
SetMenuDefaultItem
MoveWindow
GetForegroundWindow
TrackPopupMenuEx
DestroyIcon
LoadImageA
TrackPopupMenu
GetSysColor
DrawTextW
GetSystemMetrics
SetParent
LoadIconA
LoadMenuA
SetMenu
SetWindowPlacement
UpdateWindow
AdjustWindowRect
LoadCursorA
SetCursor
RedrawWindow
DialogBoxParamW
GetDlgItemTextW
GetDlgItem
EndDialog
EnableWindow
SendMessageW
GetKeyState
GetFocus
GetNextDlgTabItem
CheckMenuItem
GetMenuItemID
GetMenuItemCount
EnableMenuItem
RemoveMenu
InsertMenuItemW
CheckMenuRadioItem
DeleteMenu
SetMenuItemInfoW
GetCursorPos
GetMenu
GetSubMenu
IsMenu
GetMenuItemInfoW
DestroyMenu
GetParent
FindWindowExW
GetWindowRect
DrawAnimatedRects
IsZoomed
IsWindow
ShowWindow
IsWindowVisible
GetWindowPlacement
SetPropA
GetPropA
CallWindowProcW
RemovePropA
SetForegroundWindow
InvalidateRect
GetSysColorBrush
FillRect
GetDC
ReleaseDC
SetFocus
OpenInputDesktop
GetUserObjectInformationW
CloseDesktop
FindWindowW
CharPrevW
GetClassInfoExW
RegisterClassExW
ReleaseCapture
DestroyWindow
DefWindowProcW
LoadStringW
GetWindowLongW
SetWindowLongW
KillTimer
SetTimer
PostMessageW
PostThreadMessageW
GetMessageW
TranslateMessage
DispatchMessageW
UnregisterClassW
IsClipboardFormatAvailable
GetDialogBaseUnits
DrawMenuBar
IsIconic
FlashWindow
GetMenuState
wsprintfW
IsChild
EqualRect
IsWindowEnabled
EnumChildWindows
MessageBoxIndirectW
SystemParametersInfoW
SendDlgItemMessageW
PeekMessageW
LoadCursorW
GetWindowDC
LoadImageW
DrawFocusRect
InflateRect
OffsetRect
DeferWindowPos
GetUpdateRect
GetWindow
PtInRect
GetWindowTextLengthW
GetDesktopWindow
UnhookWindowsHookEx
GetLastInputInfo
CallNextHookEx
SetWindowsHookExW
MapWindowPoints
ClientToScreen
SetRect
AdjustWindowRectEx
MsgWaitForMultipleObjects
GetMessageTime
IntersectRect
WindowFromDC
ValidateRect
UnionRect
SetWindowRgn

gdi32

CreateEnhMetaFileA
Rectangle
MoveToEx
LineTo
CloseEnhMetaFile
DeleteEnhMetaFile
GetEnhMetaFileA
PlayEnhMetaFile
CreatePalette
Ellipse
GetClipRgn
CreateRectRgn
SelectClipRgn
CreateDCW
LPtoDP
SaveDC
SetWindowOrgEx
SetViewportOrgEx
GetSystemPaletteEntries
GetPaletteEntries
BitBlt
CreateCompatibleBitmap
CreatePen
SetDIBits
GetDIBits
EnumFontFamiliesExW
CreateFontIndirectW
DPtoLP
SetBkMode
GetTextExtentPoint32W
FillRgn
CreatePolygonRgn
GetTextMetricsW
Polygon
CreateBitmap
IntersectClipRect
GetClipBox
SetTextAlign
GetTextAlign
ExcludeClipRect
GetMapMode
SetMapMode
GetViewportExtEx
GetWindowExtEx
CreateRectRgnIndirect
RestoreDC
GetStockObject
GetLayout
SetLayout
StretchBlt
GetDIBColorTable
SetTextColor
SetBkColor
CreateHalftonePalette
SelectPalette
RealizePalette
CreateSolidBrush
DeleteObject
GetDeviceCaps
CreateDIBSection
GetObjectW
SetDIBColorTable
SelectObject
DeleteDC
CreateCompatibleDC

comdlg32

GetOpenFileNameW
GetSaveFileNameW
ChooseFontW

advapi32

RegOpenKeyW

shell32

ShellExecuteW
DragQueryFileW
SHGetFolderPathW
Shell_NotifyIconW
Shell_NotifyIconA
SHAppBarMessage
DragFinish
DragAcceptFiles
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetMalloc
ShellExecuteExW

ole32

StgOpenStorageOnILockBytes
IIDFromString
CoInitialize
CoUninitialize
StringFromCLSID
CoGetClassObject
OleLockRunning
OleFlushClipboard
OleRegGetMiscStatus
CreateOleAdviseHolder
OleRegGetUserType
OleRegEnumVerbs
OleSaveToStream
WriteClassStm
OleLoadFromStream
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleCreateStaticFromData
OleRun
DoDragDrop
CoTaskMemAlloc
CoCreateGuid
CoTaskMemFree
StringFromGUID2
CreateStreamOnHGlobal
CLSIDFromString
CLSIDFromProgID
RegisterDragDrop
RevokeDragDrop
CoCreateInstance
CoRegisterClassObject
CoRevokeClassObject
OleUninitialize
OleInitialize
GetHGlobalFromILockBytes

comctl32

CreateToolbarEx
ImageList_Add
ImageList_DrawEx
ImageList_GetIcon
ImageList_Destroy
ImageList_Draw
ImageList_EndDrag
ImageList_BeginDrag
ImageList_DragEnter
ImageList_DragMove
ImageList_DragLeave
CreateStatusWindowW
PropertySheetW
ImageList_Remove
ImageList_AddMasked
ImageList_Create

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
VerQueryValueW

Sections

.text
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 332KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

48a0f84fac3ee843559fcc6f82808d1c

Code Sign

28:48:7e:8f:ca:19:e7:84:4b:56:8e:4d:6c:4b:81:e2Certificate

Extended Key Usages

82:92:5c:49:3d:75:2f:e8:63:e3:b0:4f:aa:1a:b9:d9:16:27:13:51Signer

Signature Validations

Verification

01-12-2022 14:34 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

version

Sections

.text Size: 107KB - Virtual size: 107KB

.rdata Size: 512B - Virtual size: 4B

.data Size: 332KB - Virtual size: 332KB

.rsrc Size: 104KB - Virtual size: 103KB

.reloc Size: 2KB - Virtual size: 1KB

28:48:7e:8f:ca:19:e7:84:4b:56:8e:4d:6c:4b:81:e2
Certificate

82:92:5c:49:3d:75:2f:e8:63:e3:b0:4f:aa:1a:b9:d9:16:27:13:51
Signer

01-12-2022 14:34
Valid: false

.text
Size: 107KB - Virtual size: 107KB

.rdata
Size: 512B - Virtual size: 4B

.data
Size: 332KB - Virtual size: 332KB

.rsrc
Size: 104KB - Virtual size: 103KB

.reloc
Size: 2KB - Virtual size: 1KB