35539411402c1cb2086fd88483c9a8ffe63c3903d2f4a4345a1a16006d8fade2

Sharing

Copy URL Twitter E-mail

General

Target

35539411402c1cb2086fd88483c9a8ffe63c3903d2f4a4345a1a16006d8fade2
Size

24KB
MD5

05a5a87f97b606c1eedbb87cd71d0530
SHA1

1dc0cd3a1fd9b57398b3fdafe5fbc3ff1763341f
SHA256

35539411402c1cb2086fd88483c9a8ffe63c3903d2f4a4345a1a16006d8fade2
SHA512

a0c502eda377054804cb9bc90c682491959a1ff1c7fc0dd2d4f6380848ac6ae135caeb45e4ba7b7f7c7de34b3c2e52dc1f5a0404a84b4066bf08b69fccb512d7
SSDEEP

384:/1Rf07tnZ8t9b/jQrkyzNjb9KvZmcVQrQkCXsL25pbahh4WWieZW8U:/1Bi8byzPOAcVwQkVqrbahhdeC

Score

N/A

Malware Config

Signatures

Files

35539411402c1cb2086fd88483c9a8ffe63c3903d2f4a4345a1a16006d8fade2
.exe windows x86

bbeb72bfc8b0e8e4004a3e34555de467

Code Sign

2c:97:e6:33:fd:29:aa:4b:d0:85:0e:65:dd:02:aa
Certificate

Issuer

CN=yprYsj1KNRia

Not Before

12/03/2012, 12:03

Not After

31/12/2039, 23:59

Subject

CN=yprYsj1KNRia

Extended Key Usages

ExtKeyUsageCodeSigning

c5:85:75:a8:f4:4e:01:25:da:e6:91:66:3b:74:9d:0c:f8:69:3b:e3
Signer

Actual PE Digest

c5:85:75:a8:f4:4e:01:25:da:e6:91:66:3b:74:9d:0c:f8:69:3b:e3

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=yprYsj1KNRia

28/11/2022, 11:52
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW
lstrcpyn
lstrcpyA
lstrcmpA
lstrcmp
_hread
WriteFileEx
WriteConsoleW
WinExec
WaitForDebugEvent
TlsAlloc
SwitchToFiber
SetVolumeMountPointW
SetThreadIdealProcessor
SetTapePosition
SetSystemPowerState
SetPriorityClass
SetLocalTime
SetEnvironmentVariableA
SetCurrentDirectoryW
SetConsoleTitleW
SetConsoleMode
SetConsoleCtrlHandler
SetConsoleCP
SetComputerNameW
SetComputerNameExW
SetCommTimeouts
SetCommState
SetCalendarInfoA
RemoveDirectoryW
ReadConsoleInputW
PeekNamedPipe
PeekConsoleInputW
OpenThread
OpenSemaphoreW
MoveFileW
Module32Next
MapViewOfFile
LocalShrink
LoadLibraryExW
LoadLibraryExA
IsBadStringPtrA
InitializeCriticalSectionAndSpinCount
GlobalUnWire
GlobalDeleteAtom
GetTimeZoneInformation
GetModuleHandleA
GetThreadTimes
GetThreadContext
GetTempPathA
GetTapeParameters
GetStringTypeW
GetStdHandle
GetPrivateProfileIntA
GetModuleFileNameW
GetDiskFreeSpaceExW
GetCurrencyFormatW
GetCurrencyFormatA
GetConsoleScreenBufferInfo
GetConsoleFontSize
GetConsoleAliasExesA
GetComputerNameExA
GetCommandLineA
GetCommProperties
GetACP
GenerateConsoleCtrlEvent
FreeLibraryAndExitThread
FreeConsole
FoldStringW
FlushConsoleInputBuffer
FindVolumeClose
FindNextFileW
FindCloseChangeNotification
FindClose
FillConsoleOutputCharacterW
ExpandEnvironmentStringsW
EscapeCommFunction
EnumTimeFormatsW
EnumSystemLanguageGroupsW
EnumSystemLanguageGroupsA
EnumCalendarInfoExA
DeleteFileW
DeleteFiber
CreateThread
CreateJobObjectW
CreateIoCompletionPort
CreateEventW
CompareFileTime
CommConfigDialogW
CancelTimerQueueTimer
BuildCommDCBAndTimeoutsW
BindIoCompletionCallback
AllocateUserPhysicalPages
GetProcAddress
GetTempPathW

msvcrt

memset

user32

wvsprintfA
wsprintfW
keybd_event
UnregisterClassA
UnhookWindowsHookEx
TranslateMessage
TrackPopupMenu
ToAscii
TileChildWindows
SubtractRect
ShowOwnedPopups
SetWinEventHook
SendInput
SendIMEMessageExA
ReleaseCapture
RegisterClassA
RealGetWindowClassA
OpenIcon
OffsetRect
OemToCharW
MsgWaitForMultipleObjectsEx
MoveWindow
MonitorFromRect
MonitorFromPoint
ModifyMenuA
MessageBoxIndirectW
MessageBoxA
MapVirtualKeyExA
MapDialogRect
LookupIconIdFromDirectoryEx
LockWorkStation
LoadIconA
LoadCursorA
IsMenu
InSendMessageEx
ImpersonateDdeClientWindow
IMPGetIMEA
GetWindowTextLengthW
GetUserObjectInformationW
GetTabbedTextExtentA
GetSysColorBrush
GetPropW
GetMonitorInfoW
GetMessageW
GetMessageTime
GetMessageA
GetMenuBarInfo
GetLastInputInfo
GetKeyboardLayout
GetKeyNameTextA
GetInputState
GetDlgItemTextA
GetDlgCtrlID
GetDesktopWindow
GetCursor
GetClipboardFormatNameA
GetClassInfoW
GetClassInfoExW
GetAltTabInfo
FlashWindow
FindWindowExW
FindWindowExA
FindWindowA
EnumWindows
EnumThreadWindows
EnumDesktopsA
EnableScrollBar
DrawTextW
DialogBoxIndirectParamW
DialogBoxIndirectParamA
DestroyAcceleratorTable
DdeQueryStringA
DdeInitializeA
DdeImpersonateClient
CreatePopupMenu
CreateMenu
CreateDialogIndirectParamW
CreateCaret
CopyIcon
CloseWindowStation
ClientToScreen
CheckMenuRadioItem
CharUpperBuffW
CharPrevExA
CharNextW
ChangeMenuW
ChangeMenuA
CascadeChildWindows
CallWindowProcA
CallNextHookEx
AppendMenuW
GetMenuItemCount

gdi32

AddFontResourceTracking
ArcTo
BitBlt
CLIPOBJ_bEnum
CloseEnhMetaFile
CreateBitmap
CreateColorSpaceW
CreateDIBPatternBrushPt
CreateEllipticRgn
CreateFontIndirectW
CreateMetaFileA
CreatePenIndirect
CreatePolygonRgn
CreateRectRgnIndirect
CreateRoundRectRgn
DeleteColorSpace
DeleteDC
EngEraseSurface
EngLoadModule
EngLockSurface
EngQueryEMFInfo
EngStretchBlt
ExtCreateRegion
FONTOBJ_pvTrueTypeFontFile
FillRgn
FlattenPath
GdiCleanCacheDC
GdiConvertBitmapV5
GdiConvertFont
GdiDescribePixelFormat
GdiEntry10
GdiEntry4
GdiEntry5
GdiFixUpHandle
GdiGetLocalDC
GdiResetDCEMF
GdiSetAttrs
GdiSetLastError
GdiValidateHandle
GetBitmapBits
GetCharWidth32A
GetCharacterPlacementW
GetColorSpace
GetDCOrgEx
GetDIBColorTable
GetDeviceCaps
GetEnhMetaFileBits
GetEnhMetaFileDescriptionA
GetEnhMetaFileDescriptionW
GetEnhMetaFilePaletteEntries
GetFontUnicodeRanges
GetGlyphIndicesA
GetKerningPairs
GetMetaRgn
GetNearestPaletteIndex
GetObjectA
GetOutlineTextMetricsW
GetPaletteEntries
GetPath
GetPixel
GetStringBitmapW
GetTextMetricsW
GetWindowOrgEx
GetWorldTransform
InvertRgn
ModifyWorldTransform
OffsetViewportOrgEx
PatBlt
Pie
PlgBlt
PolyBezierTo
PolyDraw
PolyPolyline
RemoveFontResourceExW
RemoveFontResourceW
ResetDCA
RestoreDC
RoundRect
STROBJ_vEnumStart
SaveDC
SetBkColor
SetDCBrushColor
SetLayoutWidth
SetMapMode
SetMetaRgn
SetPixelV
SetROP2
SetRectRgn
SetSystemPaletteUse
XFORMOBJ_iGetXform
XLATEOBJ_hGetColorTransform
bMakePathNameW
AddFontResourceA

advapi32

RegOpenKeyExW

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbeb72bfc8b0e8e4004a3e34555de467

Code Sign

2c:97:e6:33:fd:29:aa:4b:d0:85:0e:65:dd:02:aaCertificate

Extended Key Usages

c5:85:75:a8:f4:4e:01:25:da:e6:91:66:3b:74:9d:0c:f8:69:3b:e3Signer

Signature Validations

Verification

28/11/2022, 11:52 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

advapi32

Sections

.text Size: 17KB - Virtual size: 16KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 3KB - Virtual size: 2KB

2c:97:e6:33:fd:29:aa:4b:d0:85:0e:65:dd:02:aa
Certificate

c5:85:75:a8:f4:4e:01:25:da:e6:91:66:3b:74:9d:0c:f8:69:3b:e3
Signer

28/11/2022, 11:52
Valid: false

.text
Size: 17KB - Virtual size: 16KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 2KB