ba9b9bee3fac4c14caeba5596ce2b63ad39efc66a432e07e6c1ae7719925d39a

Sharing

Copy URL Twitter E-mail

General

Target

ba9b9bee3fac4c14caeba5596ce2b63ad39efc66a432e07e6c1ae7719925d39a
Size

145KB
MD5

a5e81ba18b7ae7e79e1ae47d3b1b1f4f
SHA1

09f767c63275f122621b8fda381222f8a0d020ec
SHA256

ba9b9bee3fac4c14caeba5596ce2b63ad39efc66a432e07e6c1ae7719925d39a
SHA512

fb7249ae1733d3adbfb08c4f58a1da90577c9cfd6e81c76f6c6a799c690f1d89ed3ca3daebb83e58941fa0e7425cda275f3928a603ad015f06d94220b253354c
SSDEEP

1536:2+WpRyXV82EknYYPQHqF8SKA1xqSB5adBgr6KLhbn1vMTThIjqTBM429yE:nWyXbTnYYIHq2S3nB5iBjKt56IjYB2j

Score

N/A

Malware Config

Signatures

Files

ba9b9bee3fac4c14caeba5596ce2b63ad39efc66a432e07e6c1ae7719925d39a
.exe windows x86

428d2928a09f946c2e830d6c3c105dfc

Code Sign

6f:2b:3d:33:a7:59:29:ad:45:61:dc:b9:e0:51:cf:58
Certificate

Issuer

CN=3SrG4gdy1InpKAqzpKkQ3msikcpu1ZyqmLLS5GkC2z7Zctqzktp9I2gPieDDL2SbR6OWu8TIIfXDxDHtiDhJCKDKWBtUgqkWf3fbATgakfFdiMkmoh6mJSC6sbIc9vdYYtHNXtdHSG5zePSFu53GhZPjHocfmHpXiUTVuuatdn1prNvhdnnjMMpernJJ6FiXdvBBlIY3TNlohSPtXalH28178WghRaNtx6zKW67mk4Y3ls5WX7cg61QC2wGlq7omTbBf1IvLFUQOA1WLcwhimDDOddVlOC3UCQwNyRF4QOV3beGrpnWYrkCcvL1ypVgRSW

Not Before

10/11/2012, 02:14

Not After

31/12/2039, 23:59

Subject

CN=3SrG4gdy1InpKAqzpKkQ3msikcpu1ZyqmLLS5GkC2z7Zctqzktp9I2gPieDDL2SbR6OWu8TIIfXDxDHtiDhJCKDKWBtUgqkWf3fbATgakfFdiMkmoh6mJSC6sbIc9vdYYtHNXtdHSG5zePSFu53GhZPjHocfmHpXiUTVuuatdn1prNvhdnnjMMpernJJ6FiXdvBBlIY3TNlohSPtXalH28178WghRaNtx6zKW67mk4Y3ls5WX7cg61QC2wGlq7omTbBf1IvLFUQOA1WLcwhimDDOddVlOC3UCQwNyRF4QOV3beGrpnWYrkCcvL1ypVgRSW

Extended Key Usages

ExtKeyUsageCodeSigning

5c:fe:37:5f:b9:b5:4e:34:c0:4b:a2:49:2d:40:5f:b2:8b:81:f6:b4
Signer

Actual PE Digest

5c:fe:37:5f:b9:b5:4e:34:c0:4b:a2:49:2d:40:5f:b2:8b:81:f6:b4

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=3SrG4gdy1InpKAqzpKkQ3msikcpu1ZyqmLLS5GkC2z7Zctqzktp9I2gPieDDL2SbR6OWu8TIIfXDxDHtiDhJCKDKWBtUgqkWf3fbATgakfFdiMkmoh6mJSC6sbIc9vdYYtHNXtdHSG5zePSFu53GhZPjHocfmHpXiUTVuuatdn1prNvhdnnjMMpernJJ6FiXdvBBlIY3TNlohSPtXalH28178WghRaNtx6zKW67mk4Y3ls5WX7cg61QC2wGlq7omTbBf1IvLFUQOA1WLcwhimDDOddVlOC3UCQwNyRF4QOV3beGrpnWYrkCcvL1ypVgRSW

01/12/2022, 14:34
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
DeviceIoControl
WaitForSingleObject
CreateEventA
lstrlenA
FormatMessageA
LocalFree
GetOverlappedResult
DuplicateHandle
GetCurrentProcess
OpenProcess
ExitProcess
GetModuleHandleA
GetCommandLineA
GetCommConfig
CloseHandle
GetTickCount
lstrcpyA
GetCPInfo
CreateFileW
VirtualAlloc

user32

DestroyIcon
SendDlgItemMessageA
wsprintfA
SetWindowTextA
LoadImageA
ScreenToClient
ReleaseDC
SendMessageA
GetDC
GetWindowRect
GetDlgItem
LoadStringA
KillTimer
GetWindowTextA
SetDlgItemTextA
PostQuitMessage
ShowWindow
SetTimer
SetForegroundWindow
DestroyWindow
DefWindowProcA
UnregisterClassA
DispatchMessageA
TranslateMessage
IsDialogMessageA
GetMessageA
CreateDialogParamA
RegisterClassA
LoadCursorA
LoadIconA
LoadBitmapA
SetWindowPos

gdi32

GetTextExtentPoint32A
DeleteObject
SelectObject

advapi32

RegOpenKeyW

shell32

Shell_NotifyIconA

Sections

.text
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

428d2928a09f946c2e830d6c3c105dfc

Code Sign

6f:2b:3d:33:a7:59:29:ad:45:61:dc:b9:e0:51:cf:58Certificate

Extended Key Usages

5c:fe:37:5f:b9:b5:4e:34:c0:4b:a2:49:2d:40:5f:b2:8b:81:f6:b4Signer

Signature Validations

Verification

01/12/2022, 14:34 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 138KB - Virtual size: 138KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 496B

.reloc Size: 512B - Virtual size: 388B

6f:2b:3d:33:a7:59:29:ad:45:61:dc:b9:e0:51:cf:58
Certificate

5c:fe:37:5f:b9:b5:4e:34:c0:4b:a2:49:2d:40:5f:b2:8b:81:f6:b4
Signer

01/12/2022, 14:34
Valid: false

.text
Size: 138KB - Virtual size: 138KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 496B

.reloc
Size: 512B - Virtual size: 388B