e213db7ee17389387cc065f1b16a4311dd0cc84cc06d6ceb1cd118dcee0c48c6

Sharing

Copy URL Twitter E-mail

General

Target

e213db7ee17389387cc065f1b16a4311dd0cc84cc06d6ceb1cd118dcee0c48c6
Size

292KB
MD5

111c5db5f3fc66ecbe3faf0b3141b960
SHA1

aadda25db1fa3c2924f95b1e121d605dcbfb13b5
SHA256

e213db7ee17389387cc065f1b16a4311dd0cc84cc06d6ceb1cd118dcee0c48c6
SHA512

87fac36004103191890f735eb14b0ffa2e69e4697009dd526a9baa10200fca4e32cc268fb49377d831995694536c90d88f34b612c109f86e70cdb3bb37a038e6
SSDEEP

6144:EXjMlvdqWLqOK3/B5RyaynzgvGq6JhW7XxQgtm0DTqo:EXA/zLu/B5YzFHOtmG

Score

N/A

Malware Config

Signatures

Files

e213db7ee17389387cc065f1b16a4311dd0cc84cc06d6ceb1cd118dcee0c48c6
.exe windows x86

3049c6c8c61f31733f57afa91aa73f29

Code Sign

55:58:79:8b:5b:cd:39:61:b0:28:04:21:04:86:2e:4a
Certificate

Issuer

CN=36262356236

Not Before

10/02/2012, 10:35

Not After

31/12/2039, 23:59

Subject

CN=36262356236

Extended Key Usages

ExtKeyUsageCodeSigning

6c:c3:e7:5d:85:d6:8c:9b:01:f2:0b:0f:14:35:67:a6:d2:40:e1:17
Signer

Actual PE Digest

6c:c3:e7:5d:85:d6:8c:9b:01:f2:0b:0f:14:35:67:a6:d2:40:e1:17

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=36262356236

01/12/2022, 14:34
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetWindowsDirectoryA
LoadLibraryA
GetProcAddress
lstrlenA
lstrcpyA
CreateFileA

user32

SetLastErrorEx
MessageBoxA
ChangeMenuW
IsRectEmpty
DefMDIChildProcW
CloseClipboard
GetListBoxInfo
SetFocus
InsertMenuW
GetWindowTextA
IsCharAlphaA
GetThreadDesktop
GetMenuContextHelpId
GetDesktopWindow
DestroyMenu
GetClassNameW
GetTabbedTextExtentW
GetMessageTime
MessageBeep
LoadKeyboardLayoutW
SetProcessWindowStation
InSendMessageEx
RegisterWindowMessageA
IsChild
CopyRect
DestroyWindow
FindWindowExW
WinHelpW
GrayStringA
GetCaretPos
RegisterDeviceNotificationA
RealGetWindowClass
SendMessageA
GetMenuCheckMarkDimensions
CreateWindowExW
GetIconInfo
wvsprintfW
ValidateRect
InflateRect
LoadCursorFromFileA
DefFrameProcA
LoadKeyboardLayoutA
CopyIcon
DdeFreeDataHandle
OemToCharA
DialogBoxParamA
SetWindowWord
RemoveMenu
DdeGetLastError
GetMenu
CreateCaret
GetMessageA
GetDoubleClickTime
SendIMEMessageExW
CascadeChildWindows
GetKeyboardLayoutNameW
EndDeferWindowPos
SetCapture
ChangeDisplaySettingsW
DdeClientTransaction
wvsprintfA
GetTabbedTextExtentA
SetDeskWallpaper
UnionRect
GetWindowRect
GetSysColorBrush
IsDialogMessageA
BroadcastSystemMessage
TabbedTextOutW
CreateDialogParamA
DdeAccessData
RegisterClipboardFormatA
ScrollDC
CreateAcceleratorTableW
KillTimer
SendMessageTimeoutA
SetWindowsHookExA
ChangeDisplaySettingsExA
SetScrollInfo
OemKeyScan
HideCaret
EnumThreadWindows
MessageBoxIndirectA
DrawMenuBar
CreateDialogIndirectParamA
EnumWindowStationsA
DdeInitializeW
GetMouseMovePointsEx
ValidateRgn
GetWindowTextW
GetClassNameA
DestroyIcon
ClipCursor
GetWindowModuleFileName

comdlg32

ReplaceTextW
FindTextA
ChooseColorA
GetFileTitleW
GetSaveFileNameA
PrintDlgExW
PrintDlgExA
GetOpenFileNameA
GetSaveFileNameW
PrintDlgW
GetOpenFileNameW
PageSetupDlgA
ChooseColorW
CommDlgExtendedError
ChooseFontA
ReplaceTextA
FindTextW
PrintDlgA
ChooseFontW
GetFileTitleA
PageSetupDlgW

comctl32

ImageList_Draw
ImageList_EndDrag
ImageList_GetIcon
DrawStatusText
ord16
ord5
ImageList_Create
ImageList_Add
ImageList_SetBkColor
InitializeFlatSB
CreatePropertySheetPage
FlatSB_EnableScrollBar
ImageList_DragLeave
ord13
ImageList_BeginDrag
ImageList_DrawEx
ImageList_SetFilter
InitCommonControlsEx
GetMUILanguage
FlatSB_GetScrollProp
ImageList_GetImageInfo
FlatSB_GetScrollRange
ImageList_AddIcon
ord3
ImageList_GetBkColor
ImageList_DragMove
ImageList_SetImageCount
ImageList_SetOverlayImage
InitMUILanguage
ImageList_Copy
ImageList_LoadImageA
CreatePropertySheetPageA
ImageList_Replace
CreateToolbarEx
ImageList_SetIconSize
ImageList_GetDragImage
ImageList_DragEnter
ImageList_LoadImage
ImageList_Write
ord8
FlatSB_SetScrollRange
FlatSB_GetScrollInfo
CreatePropertySheetPageW
ImageList_DrawIndirect
ord4
PropertySheetW
ImageList_Duplicate
ImageList_GetImageRect
FlatSB_SetScrollInfo
ImageList_AddMasked
DrawStatusTextW
ImageList_Destroy

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textF
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textF1
Size: 273KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.texth
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3049c6c8c61f31733f57afa91aa73f29

Code Sign

55:58:79:8b:5b:cd:39:61:b0:28:04:21:04:86:2e:4aCertificate

Extended Key Usages

6c:c3:e7:5d:85:d6:8c:9b:01:f2:0b:0f:14:35:67:a6:d2:40:e1:17Signer

Signature Validations

Verification

01/12/2022, 14:34 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

comctl32

Sections

.text Size: 3KB - Virtual size: 3KB

.textF Size: 1024B - Virtual size: 1000B

.textF1 Size: 273KB - Virtual size: 273KB

.texth Size: 2KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 1KB - Virtual size: 1KB

55:58:79:8b:5b:cd:39:61:b0:28:04:21:04:86:2e:4a
Certificate

6c:c3:e7:5d:85:d6:8c:9b:01:f2:0b:0f:14:35:67:a6:d2:40:e1:17
Signer

01/12/2022, 14:34
Valid: false

.text
Size: 3KB - Virtual size: 3KB

.textF
Size: 1024B - Virtual size: 1000B

.textF1
Size: 273KB - Virtual size: 273KB

.texth
Size: 2KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 1KB - Virtual size: 1KB