e3508ea3134218d20f4562d23c67cbce574dc9e554ca3ce8eb8fd790d9a8c7d7

Sharing

Copy URL Twitter E-mail

General

Target

e3508ea3134218d20f4562d23c67cbce574dc9e554ca3ce8eb8fd790d9a8c7d7
Size

418KB
MD5

2408f7d83deed8f75d19b5b170b320af
SHA1

422bcf443040136a433c73dbb6959e2772275d90
SHA256

e3508ea3134218d20f4562d23c67cbce574dc9e554ca3ce8eb8fd790d9a8c7d7
SHA512

d9d3d47ffbb34704f507da0c979e713cedc31a556e156cb11432ff456256ecea30fc353890faf9ec4ae579503b49653582ce5fbe0f5559b7a662f032b21130fd
SSDEEP

6144:aVLjtNv5hqSNZizPAvXSRbovagchU8AhxSiu7/Czv+s1m+iJLpeVhvYb+Q1EHFEf:EJNvyIuAvao/WKznmgnO1oK+A

Score

N/A

Malware Config

Signatures

Files

e3508ea3134218d20f4562d23c67cbce574dc9e554ca3ce8eb8fd790d9a8c7d7
.exe windows x86

d90df596c225154903e3677f019ffb55

Code Sign

6e:a7:d9:3c:37:70:e6:5c:b2:a4:13:68:a9:7c:6d:98
Certificate

Issuer

CN=Root Agency

Not Before

26/10/2011, 14:50

Not After

31/12/2039, 23:59

Subject

CN=Joe's-Software-Emporium

28:c7:ae:66:1e:67:50:20:29:3d:93:42:d6:6d:78:ff:9b:cc:6f:c6
Signer

Actual PE Digest

28:c7:ae:66:1e:67:50:20:29:3d:93:42:d6:6d:78:ff:9b:cc:6f:c6

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Joe's-Software-Emporium

01/12/2022, 14:35
Valid: false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glMapGrid2f
glPushClientAttrib
glFogf
glColor4d
glMapGrid1f
glGetFloatv
glAccum
glColor4b
glSelectBuffer
glColor4bv
glGetIntegerv
glColor4dv
glTexSubImage1D
glIndexPointer
glPrioritizeTextures
glVertex2s
glGetMaterialiv
glColor3dv
glStencilOp
glTexCoordPointer
glRenderMode
glGetPolygonStipple
glGetMapfv
glColor3b
glTexEnvi
glVertex2d
glTexCoord2sv
glEvalPoint1
glRecti
glRects
glColor3iv
glGetPointerv
glGetError
glGetLightiv

glu32

gluGetNurbsProperty
gluPickMatrix
gluUnProject
gluQuadricNormals
gluProject
gluErrorString
gluNurbsCallback
gluBuild1DMipmaps
gluQuadricDrawStyle
gluEndCurve
gluNewQuadric
gluLoadSamplingMatrices
gluTessVertex
gluOrtho2D
gluSphere
gluPwlCurve
gluEndTrim
gluTessProperty
gluNurbsSurface
gluScaleImage
gluDisk
gluTessNormal

ole32

RevokeDragDrop
OleCreateEmbeddingHelper

kernel32

GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
GetOEMCP
InterlockedIncrement
InterlockedDecrement
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapAlloc
HeapReAlloc
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
InitializeCriticalSection
HeapDestroy
HeapCreate
GetLastError
LocalFlags
LocalAlloc
WideCharToMultiByte
VirtualQuery
VirtualFreeEx
GlobalAlloc
CompareStringA
GetUserDefaultLangID
FoldStringA
GetTimeFormatA
GlobalFree
VirtualAllocEx
WaitForSingleObject
GetProcessHeap
GetSystemDefaultLangID
GetModuleHandleA
ExitProcess
VirtualAlloc
GetProcAddress
GetStartupInfoA
GetCommandLineA
GetVersion
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 385KB - Virtual size: 457KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d90df596c225154903e3677f019ffb55

Code Sign

6e:a7:d9:3c:37:70:e6:5c:b2:a4:13:68:a9:7c:6d:98Certificate

28:c7:ae:66:1e:67:50:20:29:3d:93:42:d6:6d:78:ff:9b:cc:6f:c6Signer

Signature Validations

Verification

01/12/2022, 14:35 Valid: false

Headers

File Characteristics

Imports

opengl32

glu32

ole32

kernel32

Sections

.text Size: 21KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 385KB - Virtual size: 457KB

.rsrc Size: 5KB - Virtual size: 5KB

6e:a7:d9:3c:37:70:e6:5c:b2:a4:13:68:a9:7c:6d:98
Certificate

28:c7:ae:66:1e:67:50:20:29:3d:93:42:d6:6d:78:ff:9b:cc:6f:c6
Signer

01/12/2022, 14:35
Valid: false

.text
Size: 21KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 385KB - Virtual size: 457KB

.rsrc
Size: 5KB - Virtual size: 5KB