e293ae4c43a7f3b9aacc6b9c53deb2876dc2a62d1a2d08d43d146ece6fa9bfa4

Sharing

Copy URL Twitter E-mail

General

Target

e293ae4c43a7f3b9aacc6b9c53deb2876dc2a62d1a2d08d43d146ece6fa9bfa4
Size

351KB
MD5

a819291c5ffff4d63d3f6e89fb281450
SHA1

3e3b8677901b0dbe87112af21f4d2d6dfbd1632d
SHA256

e293ae4c43a7f3b9aacc6b9c53deb2876dc2a62d1a2d08d43d146ece6fa9bfa4
SHA512

49654d4fbc04bef0ad499f9251d84053aa2a7f3fc11f04fd9b61b39c25584b434208afe6a1fbce108f4159692f59042fe3eadb0b36eb6fc57bf0a26c50bc0d38
SSDEEP

6144:ew+I6poZxoJ0cKaylQiRldNSs89nonj6MUK/xOvXd6AszfBytnzT2:e1G6ixIxvexAc7JytnzT2

Score

N/A

Malware Config

Signatures

Files

e293ae4c43a7f3b9aacc6b9c53deb2876dc2a62d1a2d08d43d146ece6fa9bfa4
.exe windows x86

d2b195047e79e9602b1decf636f8c5c1

Code Sign

35:3e:8a:e1:df:6f:b9:5a:b8:83:e3:5e:9a:55:fc:92
Certificate

Issuer

CN=ueslocdxoct

Not Before

17/01/2012, 06:58

Not After

31/12/2039, 23:59

Subject

CN=Ciertmop

dc:8f:08:bf:dd:d8:b5:95:c4:b8:80:9b:e0:27:93:c1:8b:0e:34:c6
Signer

Actual PE Digest

dc:8f:08:bf:dd:d8:b5:95:c4:b8:80:9b:e0:27:93:c1:8b:0e:34:c6

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

NO CERTIFICATE

01/01/0001, 00:00
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

FmtIdToPropStgName
ReleaseStgMedium
OleLoadFromStream
PropVariantClear
CoCreateGuid
CreateDataCache
OleRegEnumVerbs
CoFreeLibrary
OleCreateFromDataEx
CoFileTimeToDosDateTime
OleIsRunning
OleCreateFromData

advapi32

RegDeleteValueA
RegRestoreKeyA
RegSetValueExA
RegFlushKey
RegSetValueA
RegEnumValueA
RegOpenKeyExA

kernel32

LeaveCriticalSection
MultiByteToWideChar
InitializeCriticalSection
WriteFile
LCMapStringW
GetStringTypeA
GetStringTypeW
HeapAlloc
HeapReAlloc
EnterCriticalSection
GetCommandLineA
GetSystemDefaultLangID
LocalHandle
GetOEMCP
GetNumberFormatA
GetCPInfo
LocalFlags
LCMapStringA
VirtualAlloc
VirtualQuery
GetTimeFormatA
GetProfileStringA
WriteProfileStringA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetProfileIntA
GetPrivateProfileStructA
WriteProfileSectionA
GetStartupInfoA
GetModuleHandleA
GetProcAddress
LoadLibraryA
GetVersion
ExitProcess
GetACP
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 505KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hug
Size: 298KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d2b195047e79e9602b1decf636f8c5c1

Code Sign

35:3e:8a:e1:df:6f:b9:5a:b8:83:e3:5e:9a:55:fc:92Certificate

dc:8f:08:bf:dd:d8:b5:95:c4:b8:80:9b:e0:27:93:c1:8b:0e:34:c6Signer

Signature Validations

Verification

01/01/0001, 00:00 Valid: false

Headers

File Characteristics

Imports

ole32

advapi32

kernel32

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 2KB - Virtual size: 505KB

.hug Size: 298KB - Virtual size: 297KB

.rsrc Size: 16KB - Virtual size: 15KB

.reloc Size: 4KB - Virtual size: 4KB

35:3e:8a:e1:df:6f:b9:5a:b8:83:e3:5e:9a:55:fc:92
Certificate

dc:8f:08:bf:dd:d8:b5:95:c4:b8:80:9b:e0:27:93:c1:8b:0e:34:c6
Signer

01/01/0001, 00:00
Valid: false

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 505KB

.hug
Size: 298KB - Virtual size: 297KB

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 4KB - Virtual size: 4KB