a4cca4008f1e0246cb7055dd09994e23a115616d2ab59006a86e94e9e1ce223c

Sharing

Copy URL Twitter E-mail

General

Target

a4cca4008f1e0246cb7055dd09994e23a115616d2ab59006a86e94e9e1ce223c
Size

298KB
MD5

7bfce5f08aea8e02a5df97c21c8b4054
SHA1

15bf75aa1f8d0af53311190203d0a3ff0413b72e
SHA256

a4cca4008f1e0246cb7055dd09994e23a115616d2ab59006a86e94e9e1ce223c
SHA512

b276884a65bb3ac9e5ddc82f6e50f7366cd334b400337eba88ce17cfaadc6227c094469a6ccc783759f566af649533ca70ed08515e7787ba1e02e4288fb90669
SSDEEP

6144:HawUHWSIg118HWULKjC75if1mO45xnVN0cp0cyIq:HwjIaC75y45xnko0cyIq

Score

N/A

Malware Config

Signatures

Files

a4cca4008f1e0246cb7055dd09994e23a115616d2ab59006a86e94e9e1ce223c
.exe windows x86

58616bec97f1f62466ab697e8df6cc5f

Code Sign

4c:35:75:3f:cf:2a:de:ad:46:0c:1f:dd:50:bf:2e:14
Certificate

Issuer

CN=12361235123

Not Before

26/02/2012, 20:29

Not After

31/12/2039, 23:59

Subject

CN=12361235123

Extended Key Usages

ExtKeyUsageCodeSigning

e1:bc:29:32:6b:e4:b1:ec:8a:ee:c9:7e:aa:de:19:28:8b:13:fe:61
Signer

Actual PE Digest

e1:bc:29:32:6b:e4:b1:ec:8a:ee:c9:7e:aa:de:19:28:8b:13:fe:61

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=12361235123

01/12/2022, 14:34
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW
GetWindowsDirectoryA
lstrlenA
lstrcpyA
CreateFileA
VirtualAlloc

advapi32

RegOpenKeyExW

comctl32

FlatSB_SetScrollProp
FlatSB_GetScrollInfo
ImageList_GetImageCount
ImageList_LoadImage
FlatSB_GetScrollRange
ImageList_Destroy
ord3
ord8
FlatSB_ShowScrollBar
ord16
DestroyPropertySheetPage
GetMUILanguage
_TrackMouseEvent
DrawStatusTextW
ImageList_DrawIndirect
ImageList_BeginDrag
DrawStatusText
ImageList_Remove
ImageList_GetBkColor
CreatePropertySheetPage
ImageList_SetOverlayImage
CreateStatusWindow
ImageList_DragMove
ImageList_SetImageCount
ImageList_Add
ord14
ImageList_Draw
ImageList_AddIcon
FlatSB_SetScrollPos
ImageList_GetDragImage
ImageList_Copy
ord17
ImageList_LoadImageW
CreateStatusWindowW
ImageList_Replace
PropertySheetA
FlatSB_GetScrollPos
ord15
ord4
ImageList_SetIconSize
ImageList_DrawEx
ImageList_GetIconSize
ord6
InitMUILanguage
UninitializeFlatSB
ImageList_Duplicate
ord5
ImageList_SetDragCursorImage
FlatSB_SetScrollInfo
CreatePropertySheetPageW
ImageList_GetImageRect
ImageList_LoadImageA
InitCommonControlsEx
ImageList_EndDrag
ord2
ImageList_AddMasked
ImageList_DragShowNolock
ImageList_SetBkColor
FlatSB_GetScrollProp
ImageList_Write

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text11
Size: 273KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text12
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textMM3
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM4
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM1
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM5
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM6
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM7
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM8
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textMM9
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textM10
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textM11
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textM12
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58616bec97f1f62466ab697e8df6cc5f

Code Sign

4c:35:75:3f:cf:2a:de:ad:46:0c:1f:dd:50:bf:2e:14Certificate

Extended Key Usages

e1:bc:29:32:6b:e4:b1:ec:8a:ee:c9:7e:aa:de:19:28:8b:13:fe:61Signer

Signature Validations

Verification

01/12/2022, 14:34 Valid: false

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

Sections

.text Size: 3KB - Virtual size: 2KB

.text11 Size: 273KB - Virtual size: 273KB

.text12 Size: 1024B - Virtual size: 912B

.textMM3 Size: 512B - Virtual size: 500B

.textMM4 Size: 512B - Virtual size: 500B

.textMM1 Size: 512B - Virtual size: 500B

.textMM5 Size: 512B - Virtual size: 500B

.textMM6 Size: 512B - Virtual size: 500B

.textMM7 Size: 512B - Virtual size: 500B

.textMM8 Size: 512B - Virtual size: 500B

.textMM9 Size: 512B - Virtual size: 500B

.textM10 Size: 512B - Virtual size: 500B

.textM11 Size: 512B - Virtual size: 500B

.textM12 Size: 512B - Virtual size: 500B

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 1024B - Virtual size: 520B

4c:35:75:3f:cf:2a:de:ad:46:0c:1f:dd:50:bf:2e:14
Certificate

e1:bc:29:32:6b:e4:b1:ec:8a:ee:c9:7e:aa:de:19:28:8b:13:fe:61
Signer

01/12/2022, 14:34
Valid: false

.text
Size: 3KB - Virtual size: 2KB

.text11
Size: 273KB - Virtual size: 273KB

.text12
Size: 1024B - Virtual size: 912B

.textMM3
Size: 512B - Virtual size: 500B

.textMM4
Size: 512B - Virtual size: 500B

.textMM1
Size: 512B - Virtual size: 500B

.textMM5
Size: 512B - Virtual size: 500B

.textMM6
Size: 512B - Virtual size: 500B

.textMM7
Size: 512B - Virtual size: 500B

.textMM8
Size: 512B - Virtual size: 500B

.textMM9
Size: 512B - Virtual size: 500B

.textM10
Size: 512B - Virtual size: 500B

.textM11
Size: 512B - Virtual size: 500B

.textM12
Size: 512B - Virtual size: 500B

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 1024B - Virtual size: 520B