86fb1fc6f24277e3297b06777cfda2bd20cd89f2ae3360e89d699eb22840bf07

Sharing

Copy URL Twitter E-mail

General

Target

86fb1fc6f24277e3297b06777cfda2bd20cd89f2ae3360e89d699eb22840bf07
Size

295KB
MD5

76a017eab7995265737383d9deca354a
SHA1

24f396c9d27b72c12702ddd222c7f916d1d89f2a
SHA256

86fb1fc6f24277e3297b06777cfda2bd20cd89f2ae3360e89d699eb22840bf07
SHA512

2b9a455c6b9a792b1199f52670beb51d5614ed40d7c24e7a7b27a9268ee6de13df87c9721c9f8e0e74809f7fcd9ac724e4c1fdf5f948435a5f0f5b71e89d89a7
SSDEEP

6144:XiGtsL8AlqNC+U+1PTG/qm/PgCnmUSFMhl45+M/oI29+Kh:yGtsLXt+J1PTEn/iUSFM85+rI2ph

Score

N/A

Malware Config

Signatures

Files

86fb1fc6f24277e3297b06777cfda2bd20cd89f2ae3360e89d699eb22840bf07
.exe windows x86

c2e565197e385c9d09ba010f53d1f5ca

Code Sign

6e:d2:ef:44:b4:9e:4c:8f:4d:a7:c7:9f:37:b4:d7:a1
Certificate

Issuer

CN=5U84

Not Before

01/06/2012, 08:28

Not After

31/12/2039, 23:59

Subject

CN=5U84

Extended Key Usages

ExtKeyUsageCodeSigning

d8:80:de:60:9d:07:a4:89:85:0f:f9:7b:20:14:99:7a:57:42:12:3a
Signer

Actual PE Digest

d8:80:de:60:9d:07:a4:89:85:0f:f9:7b:20:14:99:7a:57:42:12:3a

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=5U84

01/12/2022, 14:34
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW
lstrcatW
CreateFileW
VirtualAllocEx
CloseHandle
GetModuleHandleW
GetProcAddress

user32

GetDC
ReleaseDC
InvalidateRect
BeginPaint
ScrollWindow
EndPaint
PostQuitMessage
DefWindowProcA

gdi32

GetStockObject
SelectObject
GetTextMetricsA
SetBkMode
TextOutA

advapi32

RegCloseKey

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 266KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2e565197e385c9d09ba010f53d1f5ca

Code Sign

6e:d2:ef:44:b4:9e:4c:8f:4d:a7:c7:9f:37:b4:d7:a1Certificate

Extended Key Usages

d8:80:de:60:9d:07:a4:89:85:0f:f9:7b:20:14:99:7a:57:42:12:3aSigner

Signature Validations

Verification

01/12/2022, 14:34 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 22KB - Virtual size: 22KB

.data Size: 266KB - Virtual size: 266KB

.data3 Size: 512B - Virtual size: 100B

.data2 Size: 512B - Virtual size: 100B

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 280B

6e:d2:ef:44:b4:9e:4c:8f:4d:a7:c7:9f:37:b4:d7:a1
Certificate

d8:80:de:60:9d:07:a4:89:85:0f:f9:7b:20:14:99:7a:57:42:12:3a
Signer

01/12/2022, 14:34
Valid: false

.text
Size: 22KB - Virtual size: 22KB

.data
Size: 266KB - Virtual size: 266KB

.data3
Size: 512B - Virtual size: 100B

.data2
Size: 512B - Virtual size: 100B

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 280B