f325fadcddf13b0bda243af5dce507ed0207f4828d02ee13db40b01e3772cd66

Sharing

Copy URL Twitter E-mail

General

Target

f325fadcddf13b0bda243af5dce507ed0207f4828d02ee13db40b01e3772cd66
Size

336KB
MD5

c7939ef621d169490652634c4c1128bf
SHA1

cade0a48efdf49d85a7404119c6a50eadcff01dd
SHA256

f325fadcddf13b0bda243af5dce507ed0207f4828d02ee13db40b01e3772cd66
SHA512

b4cc7e740c2c550ff3535a58c700aa141542b4f326d4dd9467eeea5a646701e124109b2748865bc7c96e1d59d90d9b58ab4c2ef6f0c5fb530f0a4961e4b696f8
SSDEEP

6144:9RpevSxtg9zNticJrmA1lWH8bHllThzxIcnrokfJ/N7mZ3kS3vea1v098bcFu1:9Lxxty/zWWltIcrokf9Ni9X09eco1

Score

N/A

Malware Config

Signatures

Files

f325fadcddf13b0bda243af5dce507ed0207f4828d02ee13db40b01e3772cd66
.exe windows x86

76429ba814f04f4b16efe7be0e9a2f45

Code Sign

2e:cc:81:cf:31:ab:ee:90:40:b8:99:61:b2:9b:bc:9f
Certificate

Issuer

CN=Root Agency

Not Before

26/10/2011, 05:44

Not After

31/12/2039, 23:59

Subject

CN=Joe's-Software-Emporium

d0:a7:fb:d5:9a:c3:8a:dc:ca:63:f3:92:5f:c5:ba:92:33:54:60:58
Signer

Actual PE Digest

d0:a7:fb:d5:9a:c3:8a:dc:ca:63:f3:92:5f:c5:ba:92:33:54:60:58

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Joe's-Software-Emporium

01/12/2022, 14:34
Valid: false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glLoadIdentity
glEnableClientState
glColorMaterial
glFogi
glMapGrid2f
glGetError
glColor3ubv
glEvalPoint2
glTexCoord1i
glLineStipple
glVertex4fv
glIndexd
glTranslated
glVertex2fv
glTexGend
glTexCoord1iv
glRasterPos4dv
glGetString
glRasterPos4d
glTexGenf
glVertex2iv
glRasterPos4i
glRasterPos2i
glColor4uiv
glFlush
glCopyPixels
glEvalCoord2d
glPolygonOffset

glu32

gluErrorUnicodeStringEXT
gluGetNurbsProperty
gluBuild1DMipmaps
gluScaleImage
gluEndTrim
gluQuadricOrientation
gluPickMatrix
gluDeleteQuadric
gluPartialDisk
gluNewTess
gluNewNurbsRenderer
gluBeginTrim
gluTessCallback
gluTessEndContour
gluNurbsProperty
gluBeginCurve
gluQuadricNormals
gluUnProject
gluQuadricDrawStyle
gluTessEndPolygon
gluDeleteTess
gluOrtho2D
gluLoadSamplingMatrices
gluLookAt
gluGetString

urlmon

CreateFormatEnumerator

kernel32

InterlockedDecrement
InterlockedIncrement
RtlUnwind
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
WriteFile
GlobalAlloc
HeapFree
VirtualFree
ReleaseSemaphore
CompareStringA
VirtualAllocEx
VirtualUnlock
MultiByteToWideChar
OpenEventA
InitializeCriticalSection
GetUserDefaultLCID
IsValidLocale
LocalAlloc
VirtualQueryEx
LocalLock
GetProcessHeap
HeapDestroy
HeapSize
GlobalMemoryStatus
IsBadReadPtr
DeleteCriticalSection
ResetEvent
OpenSemaphoreA
GetCurrencyFormatA
GetProcAddress
GetModuleHandleA
VirtualAlloc
ExitProcess
GetStartupInfoA
GetCommandLineA
GetVersion
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
HeapCreate

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 289KB - Virtual size: 657KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

76429ba814f04f4b16efe7be0e9a2f45

Code Sign

2e:cc:81:cf:31:ab:ee:90:40:b8:99:61:b2:9b:bc:9fCertificate

d0:a7:fb:d5:9a:c3:8a:dc:ca:63:f3:92:5f:c5:ba:92:33:54:60:58Signer

Signature Validations

Verification

01/12/2022, 14:34 Valid: false

Headers

File Characteristics

Imports

opengl32

glu32

urlmon

kernel32

Sections

.text Size: 25KB - Virtual size: 24KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 289KB - Virtual size: 657KB

.rsrc Size: 16KB - Virtual size: 15KB

2e:cc:81:cf:31:ab:ee:90:40:b8:99:61:b2:9b:bc:9f
Certificate

d0:a7:fb:d5:9a:c3:8a:dc:ca:63:f3:92:5f:c5:ba:92:33:54:60:58
Signer

01/12/2022, 14:34
Valid: false

.text
Size: 25KB - Virtual size: 24KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 289KB - Virtual size: 657KB

.rsrc
Size: 16KB - Virtual size: 15KB