ccddc7a2340d38e95c307e06beb18c8142fe5af0f3937c8f0cc2aa7704dbead0

Sharing

Copy URL Twitter E-mail

General

Target

ccddc7a2340d38e95c307e06beb18c8142fe5af0f3937c8f0cc2aa7704dbead0
Size

374KB
MD5

2c9f037a59b113511c37ea7c5040a342
SHA1

ba279af5be704ecdf42aa9d986bb047c6a71dc4b
SHA256

ccddc7a2340d38e95c307e06beb18c8142fe5af0f3937c8f0cc2aa7704dbead0
SHA512

37e0967a61c634f4670266b7401123921c34e6ade27d086a2a8210ac0c07ea57682d83844b2428a118e8f5f45530d2dd24099f9776fb9ff4ad10bcc2fefa9f64
SSDEEP

6144:KtZg7cT5XLo5qAnnk6N5vC4PZN/magGgp8884+3UcTmeZBllOXEwXuP3buPilf:Ktm7c9XVmnpDC6VgtpX8MzkBqXUP9

Score

N/A

Malware Config

Signatures

Files

ccddc7a2340d38e95c307e06beb18c8142fe5af0f3937c8f0cc2aa7704dbead0
.exe windows x86

fb71a7a71013e005a6c8c748cded478c

Code Sign

7b:c2:b9:bd:46:51:94:ae:4f:57:e5:bc:37:59:34:6f
Certificate

Issuer

CN=jjjjjjjjjjjjjjjjjjjjjjjjjjjjj pthvHuy1d D3rqc6oKG6IpJLrE8MMlm Km7dq2et39g7twLipju2l52M4FgMm6umciwzpcFe6E2F LbvDjnG2wbvEs9 cqi9eagjJCqiF2KIjx5z n9MDsDh5Er2yfoa3355EdIFFnsEmbHhe7l2rtg872qapksBa1fxk57Mnmk7DbCAJz9riJMl4DiB7n hLyc5B11eE h qrdrpHlnADl6g967oryfaKjbBrkrkBguElk r jublttMqF9yH1iAo3HKMi5jtrnFo1jhGna5EH9K5ibc 4zEGzz6B6rzzrdv6fEHfuw37DrDxlKmgeaKH4r8v8 aKI7j BnBfFoyhfFr5MJbBnjDw9cvge11vefmtiILvelzhxnxC53 Aikg4LsEuykJ4m4mL 9D4JgnIuvc158ny5H oFolmlJfMayte5pzLxaaejCarDigKi9qrdH6MytabnouGGdwFccvAGvo6igorkEF14t3tkd4en71CjJKvo3DslfH eDmwHbfyAla7ecHvwv1BhzsFidIGKmDCi4eqhBaDdL1r6cHj44BfdfheFicwsIdLpdry8gwJtqlxix6x mczc6 fD9gH9DDn8KiHaIwlGj9u tnlh AgL 29D3xkGrd7BciDtzLMG3fLhyIsxvCxy2i6JKcL61aJmw1MHbauf8hqeh774M4xfffzwdndzfEFlpM2ri641GahJtAD8iiwaHIJcrhDEs8cLMAesqKzv4vvHHsthHMkkgio2uhI4rEecK2zs3bfo294IKDKAkdFy 2MhKqzA9zwqGAk23diK36xA5oHxraKxi npFnhGBdxMzgIF9jtx42oLyhz5 Hxw8qpBjdCvyCwwIeCaM7wmBq FIAdAFpC5efjyir 5za2ugxu2d7GLqrEzDu89ux7FHFIEhpAugiGGwBCEoyczC3aFD3t6obpGkpqq74a4n6tdqGnH7xrg8wixj8gLylofJpnGqxd 2Ib5rn84BIcpDL3GHiCsjE5Iw9v3c9Jglv2plbk6JinFb7Hkw2dE9c8lJsvHB2JHkB nI7wve6eCv2k2hr84xCpLgkBx5GGJcsfItmwiHCwwnnb7Hhjkjq97yjFrJLKJMInIKt3H1bozGJkejzcy42xBgnbBhBBqIK5jJn9paGqGCieknd718J8sBv2nG7qrpgycEzbcFFo89hsfbxpBzp yDB19H4bdwfhLrsjuoxAvx5hAKtiCtlwEpobhfe9lh5 Br1m1lrkGfDKBk3t297gHagMa5f1vHrmzDo6pkfeaAx887BKqbgtLmuoK6jkbGfA5Gvluvs8j9K 9D A4e phfn8K4vAjH7a8FonpBFlMwcCIBn5gCaqnlKFjav1EvFG7jAvn kEn6haerlpbghrML6qm4py65yMA1iDovk1kchKFbyv5rB5 q38HkAFfl1Jv7xFjC5nl3y21IL12DdF6LeliHJmzAFkzygw2kmIdsgkrA2cALBeAixoxC3CJlulbfgJCGJh9627lanqr1fHCJeewlLIhwjopCLKM2y9vEDfHAd7HqIfpFp9aAGyCEk5MG 6fAHeDxtgE9aiepve7l1iqI6GmuzoJLKyHyaD7pw8pngKb52yJakuJ3e8AKirrBAwC5Ekgl4jv11MM27zLAFm286bhDoA8gCEeyp45lLwcjqg2356y Iunqivnaao8flrGkygD1l8A38j8mICJEJ2tDhE5nxAsHCiK1wK8x5xLACGwsxqy5ykzy2xwKJ cB9DLDlax1GGHrFBsFFalqkF1cIgHc3Epn9lpfLl umnyBergAaKJE8D7gkJCj9xacfCifDvlH21zKEfAn3Ag54ro8dtBA3doHCmyjIqfKiGz1royG4qkJ69iA3wo71G4CbBcsx2 IKCGbiLaAfo3zGrxry12Jc6ECJroC59ykDvGjGawgEqcaHep3lyBi9to llllllllllllllllllllllll

Not Before

06/01/2013, 12:55

Not After

31/12/2039, 23:59

Subject

CN=jjjjjjjjjjjjjjjjjjjjjjjjjjjjj pthvHuy1d D3rqc6oKG6IpJLrE8MMlm Km7dq2et39g7twLipju2l52M4FgMm6umciwzpcFe6E2F LbvDjnG2wbvEs9 cqi9eagjJCqiF2KIjx5z n9MDsDh5Er2yfoa3355EdIFFnsEmbHhe7l2rtg872qapksBa1fxk57Mnmk7DbCAJz9riJMl4DiB7n hLyc5B11eE h qrdrpHlnADl6g967oryfaKjbBrkrkBguElk r jublttMqF9yH1iAo3HKMi5jtrnFo1jhGna5EH9K5ibc 4zEGzz6B6rzzrdv6fEHfuw37DrDxlKmgeaKH4r8v8 aKI7j BnBfFoyhfFr5MJbBnjDw9cvge11vefmtiILvelzhxnxC53 Aikg4LsEuykJ4m4mL 9D4JgnIuvc158ny5H oFolmlJfMayte5pzLxaaejCarDigKi9qrdH6MytabnouGGdwFccvAGvo6igorkEF14t3tkd4en71CjJKvo3DslfH eDmwHbfyAla7ecHvwv1BhzsFidIGKmDCi4eqhBaDdL1r6cHj44BfdfheFicwsIdLpdry8gwJtqlxix6x mczc6 fD9gH9DDn8KiHaIwlGj9u tnlh AgL 29D3xkGrd7BciDtzLMG3fLhyIsxvCxy2i6JKcL61aJmw1MHbauf8hqeh774M4xfffzwdndzfEFlpM2ri641GahJtAD8iiwaHIJcrhDEs8cLMAesqKzv4vvHHsthHMkkgio2uhI4rEecK2zs3bfo294IKDKAkdFy 2MhKqzA9zwqGAk23diK36xA5oHxraKxi npFnhGBdxMzgIF9jtx42oLyhz5 Hxw8qpBjdCvyCwwIeCaM7wmBq FIAdAFpC5efjyir 5za2ugxu2d7GLqrEzDu89ux7FHFIEhpAugiGGwBCEoyczC3aFD3t6obpGkpqq74a4n6tdqGnH7xrg8wixj8gLylofJpnGqxd 2Ib5rn84BIcpDL3GHiCsjE5Iw9v3c9Jglv2plbk6JinFb7Hkw2dE9c8lJsvHB2JHkB nI7wve6eCv2k2hr84xCpLgkBx5GGJcsfItmwiHCwwnnb7Hhjkjq97yjFrJLKJMInIKt3H1bozGJkejzcy42xBgnbBhBBqIK5jJn9paGqGCieknd718J8sBv2nG7qrpgycEzbcFFo89hsfbxpBzp yDB19H4bdwfhLrsjuoxAvx5hAKtiCtlwEpobhfe9lh5 Br1m1lrkGfDKBk3t297gHagMa5f1vHrmzDo6pkfeaAx887BKqbgtLmuoK6jkbGfA5Gvluvs8j9K 9D A4e phfn8K4vAjH7a8FonpBFlMwcCIBn5gCaqnlKFjav1EvFG7jAvn kEn6haerlpbghrML6qm4py65yMA1iDovk1kchKFbyv5rB5 q38HkAFfl1Jv7xFjC5nl3y21IL12DdF6LeliHJmzAFkzygw2kmIdsgkrA2cALBeAixoxC3CJlulbfgJCGJh9627lanqr1fHCJeewlLIhwjopCLKM2y9vEDfHAd7HqIfpFp9aAGyCEk5MG 6fAHeDxtgE9aiepve7l1iqI6GmuzoJLKyHyaD7pw8pngKb52yJakuJ3e8AKirrBAwC5Ekgl4jv11MM27zLAFm286bhDoA8gCEeyp45lLwcjqg2356y Iunqivnaao8flrGkygD1l8A38j8mICJEJ2tDhE5nxAsHCiK1wK8x5xLACGwsxqy5ykzy2xwKJ cB9DLDlax1GGHrFBsFFalqkF1cIgHc3Epn9lpfLl umnyBergAaKJE8D7gkJCj9xacfCifDvlH21zKEfAn3Ag54ro8dtBA3doHCmyjIqfKiGz1royG4qkJ69iA3wo71G4CbBcsx2 IKCGbiLaAfo3zGrxry12Jc6ECJroC59ykDvGjGawgEqcaHep3lyBi9to llllllllllllllllllllllll

Extended Key Usages

ExtKeyUsageCodeSigning

88:13:c4:db:a1:fb:b1:48:b4:15:f3:1e:fc:ba:b5:ba:10:ac:a4:51
Signer

Actual PE Digest

88:13:c4:db:a1:fb:b1:48:b4:15:f3:1e:fc:ba:b5:ba:10:ac:a4:51

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=jjjjjjjjjjjjjjjjjjjjjjjjjjjjj pthvHuy1d D3rqc6oKG6IpJLrE8MMlm Km7dq2et39g7twLipju2l52M4FgMm6umciwzpcFe6E2F LbvDjnG2wbvEs9 cqi9eagjJCqiF2KIjx5z n9MDsDh5Er2yfoa3355EdIFFnsEmbHhe7l2rtg872qapksBa1fxk57Mnmk7DbCAJz9riJMl4DiB7n hLyc5B11eE h qrdrpHlnADl6g967oryfaKjbBrkrkBguElk r jublttMqF9yH1iAo3HKMi5jtrnFo1jhGna5EH9K5ibc 4zEGzz6B6rzzrdv6fEHfuw37DrDxlKmgeaKH4r8v8 aKI7j BnBfFoyhfFr5MJbBnjDw9cvge11vefmtiILvelzhxnxC53 Aikg4LsEuykJ4m4mL 9D4JgnIuvc158ny5H oFolmlJfMayte5pzLxaaejCarDigKi9qrdH6MytabnouGGdwFccvAGvo6igorkEF14t3tkd4en71CjJKvo3DslfH eDmwHbfyAla7ecHvwv1BhzsFidIGKmDCi4eqhBaDdL1r6cHj44BfdfheFicwsIdLpdry8gwJtqlxix6x mczc6 fD9gH9DDn8KiHaIwlGj9u tnlh AgL 29D3xkGrd7BciDtzLMG3fLhyIsxvCxy2i6JKcL61aJmw1MHbauf8hqeh774M4xfffzwdndzfEFlpM2ri641GahJtAD8iiwaHIJcrhDEs8cLMAesqKzv4vvHHsthHMkkgio2uhI4rEecK2zs3bfo294IKDKAkdFy 2MhKqzA9zwqGAk23diK36xA5oHxraKxi npFnhGBdxMzgIF9jtx42oLyhz5 Hxw8qpBjdCvyCwwIeCaM7wmBq FIAdAFpC5efjyir 5za2ugxu2d7GLqrEzDu89ux7FHFIEhpAugiGGwBCEoyczC3aFD3t6obpGkpqq74a4n6tdqGnH7xrg8wixj8gLylofJpnGqxd 2Ib5rn84BIcpDL3GHiCsjE5Iw9v3c9Jglv2plbk6JinFb7Hkw2dE9c8lJsvHB2JHkB nI7wve6eCv2k2hr84xCpLgkBx5GGJcsfItmwiHCwwnnb7Hhjkjq97yjFrJLKJMInIKt3H1bozGJkejzcy42xBgnbBhBBqIK5jJn9paGqGCieknd718J8sBv2nG7qrpgycEzbcFFo89hsfbxpBzp yDB19H4bdwfhLrsjuoxAvx5hAKtiCtlwEpobhfe9lh5 Br1m1lrkGfDKBk3t297gHagMa5f1vHrmzDo6pkfeaAx887BKqbgtLmuoK6jkbGfA5Gvluvs8j9K 9D A4e phfn8K4vAjH7a8FonpBFlMwcCIBn5gCaqnlKFjav1EvFG7jAvn kEn6haerlpbghrML6qm4py65yMA1iDovk1kchKFbyv5rB5 q38HkAFfl1Jv7xFjC5nl3y21IL12DdF6LeliHJmzAFkzygw2kmIdsgkrA2cALBeAixoxC3CJlulbfgJCGJh9627lanqr1fHCJeewlLIhwjopCLKM2y9vEDfHAd7HqIfpFp9aAGyCEk5MG 6fAHeDxtgE9aiepve7l1iqI6GmuzoJLKyHyaD7pw8pngKb52yJakuJ3e8AKirrBAwC5Ekgl4jv11MM27zLAFm286bhDoA8gCEeyp45lLwcjqg2356y Iunqivnaao8flrGkygD1l8A38j8mICJEJ2tDhE5nxAsHCiK1wK8x5xLACGwsxqy5ykzy2xwKJ cB9DLDlax1GGHrFBsFFalqkF1cIgHc3Epn9lpfLl umnyBergAaKJE8D7gkJCj9xacfCifDvlH21zKEfAn3Ag54ro8dtBA3doHCmyjIqfKiGz1royG4qkJ69iA3wo71G4CbBcsx2 IKCGbiLaAfo3zGrxry12Jc6ECJroC59ykDvGjGawgEqcaHep3lyBi9to llllllllllllllllllllllll

01/12/2022, 14:34
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
VirtualAlloc
GetProcAddress

user32

CheckDlgButton
CheckRadioButton
DispatchMessageA
EnableWindow
GetDC
GetDlgItem
GetDlgItemTextA
GetParent
GetSystemMetrics
GetWindowLongA
GetWindowRect
CharPrevA
LoadStringA
MessageBeep
MessageBoxA
MsgWaitForMultipleObjects
PeekMessageA
PostMessageA
ReleaseDC
SendDlgItemMessageA
SendMessageA
SetDlgItemTextA
SetFocus
SetWindowLongA
ShowWindow
wsprintfA
CharNextA
CallWindowProcA
LoadIconA
LoadCursorA
RegisterClassExA
IsDlgButtonChecked

gdi32

CreateFontIndirectA
DeleteObject
GetDeviceCaps
GetObjectA
GetStockObject

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

m11
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

m10
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

m9
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

m8
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

m7
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

m6
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

m5
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

m4
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

m3
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 309KB - Virtual size: 309KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb71a7a71013e005a6c8c748cded478c

Code Sign

7b:c2:b9:bd:46:51:94:ae:4f:57:e5:bc:37:59:34:6fCertificate

Extended Key Usages

88:13:c4:db:a1:fb:b1:48:b4:15:f3:1e:fc:ba:b5:ba:10:ac:a4:51Signer

Signature Validations

Verification

01/12/2022, 14:34 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 4KB - Virtual size: 3KB

m11 Size: 512B - Virtual size: 100B

m10 Size: 512B - Virtual size: 100B

m9 Size: 512B - Virtual size: 100B

m8 Size: 512B - Virtual size: 100B

m7 Size: 512B - Virtual size: 100B

m6 Size: 512B - Virtual size: 100B

m5 Size: 512B - Virtual size: 100B

m4 Size: 512B - Virtual size: 100B

m3 Size: 512B - Virtual size: 100B

.data Size: 309KB - Virtual size: 309KB

.data2 Size: 1KB - Virtual size: 1KB

.rsrc Size: 41KB - Virtual size: 40KB

7b:c2:b9:bd:46:51:94:ae:4f:57:e5:bc:37:59:34:6f
Certificate

88:13:c4:db:a1:fb:b1:48:b4:15:f3:1e:fc:ba:b5:ba:10:ac:a4:51
Signer

01/12/2022, 14:34
Valid: false

.text
Size: 4KB - Virtual size: 3KB

m11
Size: 512B - Virtual size: 100B

m10
Size: 512B - Virtual size: 100B

m9
Size: 512B - Virtual size: 100B

m8
Size: 512B - Virtual size: 100B

m7
Size: 512B - Virtual size: 100B

m6
Size: 512B - Virtual size: 100B

m5
Size: 512B - Virtual size: 100B

m4
Size: 512B - Virtual size: 100B

m3
Size: 512B - Virtual size: 100B

.data
Size: 309KB - Virtual size: 309KB

.data2
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 41KB - Virtual size: 40KB