e8dfb2066032a646e5913fe825a59589a7ea6b32c54155331e3cd473b4351bec

Sharing

Copy URL

Twitter E-mail

General

Target

e8dfb2066032a646e5913fe825a59589a7ea6b32c54155331e3cd473b4351bec
Size

179KB
MD5

87d1e1922295fc239b431f4442da98d4
SHA1

acd2d798d052f57989c8b355e270437ad63b3667
SHA256

e8dfb2066032a646e5913fe825a59589a7ea6b32c54155331e3cd473b4351bec
SHA512

cd4a2ba2dfbf2832f1258423f31969c29696b027e24e14886429d5395f6d1802aa26ec6c2ea319940d61f0dc0b508bd3f7dcfface8d661c68362441e64e7a625
SSDEEP

3072:wIVPLnbnbffbUFJrJ7jYpmqsngUms888imAA3mSK2Qe5nw:9nbb7QJvqsnrmsHmSuu

Score

N/A

Malware Config

Signatures

Files

e8dfb2066032a646e5913fe825a59589a7ea6b32c54155331e3cd473b4351bec
.exe windows x86

f7261e910592986bc957118014f9d233

Code Sign

73:c2:e8:4a:e6:53:2c:94:4e:85:92:3a:67:87:27:6a
Certificate

Issuer

CN=evtwetvbqwe45vb2

Not Before

01/03/2012, 08:06

Not After

31/12/2039, 23:59

Subject

CN=evtwetvbqwe45vb2

Extended Key Usages

ExtKeyUsageCodeSigning

07:2e:f5:c7:26:39:14:88:81:4f:90:27:44:44:8b:06:b7:a5:f1:59
Signer

Actual PE Digest

07:2e:f5:c7:26:39:14:88:81:4f:90:27:44:44:8b:06:b7:a5:f1:59

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=evtwetvbqwe45vb2

01/12/2022, 14:35
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedCompareExchange
LoadLibraryA
GetProcAddress
CreateFileA
lstrcpyA
lstrlenA
GetWindowsDirectoryA
VirtualAlloc

user32

BroadcastSystemMessageA
ChangeDisplaySettingsExA
ChangeMenuW
CharLowerBuffW
CharPrevA
CharUpperW
CountClipboardFormats
CreateDesktopW
CreateIconFromResourceEx
CreateMenu
DdeAddData
DdeEnableCallback
DdeGetLastError
DdeNameService
DefFrameProcA
DeferWindowPos
DrawFrameControl
EndMenu
EnumDesktopsA
EnumDesktopsW
EnumDisplayDevicesW
EnumDisplayMonitors
EnumPropsExA
EnumWindowStationsA
EnumWindowStationsW
FindWindowExW
GetAsyncKeyState
GetCaretBlinkTime
GetClassInfoExW
GetClassWord
GetClipboardFormatNameA
GetComboBoxInfo
GetDesktopWindow
GetDlgCtrlID
GetKeyboardLayout
GetKeyboardLayoutNameA
GetLastActivePopup
GetListBoxInfo
GetMenuDefaultItem
GetMenuStringW
GetOpenClipboardWindow
GetShellWindow
GetTitleBarInfo
GetWindowDC
GrayStringW
HideCaret
HiliteMenuItem
IMPGetIMEA
IMPQueryIMEA
InternalGetWindowText
IsWindow
LoadAcceleratorsA
LoadImageW
LockWindowUpdate
MessageBoxExA
OemToCharBuffW
OemToCharW
OpenIcon
PeekMessageA
PostMessageA
RealGetWindowClassA
ReplyMessage
ReuseDDElParam
SendDlgItemMessageA
SendNotifyMessageW
SetCaretPos
SetDeskWallpaper
SetDlgItemInt
SetDlgItemTextA
SetScrollInfo
SetScrollRange
SetShellWindow
SetWindowPlacement
SetWindowsHookA
ShowCaret
SubtractRect
SwitchDesktop
SystemParametersInfoA
SystemParametersInfoW
ToUnicode
UnhookWindowsHookEx
UnregisterDeviceNotification
WINNLSEnableIME

ole32

BindMoniker
CLSIDFromProgIDEx
CoCreateGuid
CoCreateInstance
CoDisableCallCancellation
CoFileTimeNow
CoGetInstanceFromFile
CoGetMarshalSizeMax
CoGetObject
CoGetStandardMarshal
CoInitializeEx
CoInitializeSecurity
CoInstall
CoIsHandlerConnected
CoQueryProxyBlanket
CoReactivateObject
CoRegisterMessageFilter
CoTaskMemFree
CoTaskMemRealloc
CoTreatAsClass
CoUnmarshalHresult
CreateAntiMoniker
CreateBindCtx
CreateDataAdviseHolder
CreateDataCache
CreateFileMoniker
CreateGenericComposite
CreateOleAdviseHolder
CreateStdProgressIndicator
FreePropVariantArray
GetClassFile
GetConvertStg
GetHGlobalFromStream
GetRunningObjectTable
HACCEL_UserFree
HACCEL_UserUnmarshal
HBITMAP_UserMarshal
HBRUSH_UserMarshal
HDC_UserMarshal
HENHMETAFILE_UserFree
HGLOBAL_UserFree
HGLOBAL_UserMarshal
HICON_UserSize
HICON_UserUnmarshal
HMENU_UserMarshal
HMENU_UserUnmarshal
HMETAFILEPICT_UserSize
HMETAFILE_UserSize
HPALETTE_UserUnmarshal
HkOleRegisterObject
IIDFromString
MkParseDisplayName
OleConvertIStorageToOLESTREAM
OleConvertOLESTREAMToIStorage
OleConvertOLESTREAMToIStorageEx
OleCreateEx
OleCreateFromDataEx
OleCreateFromFile
OleCreateLinkEx
OleCreateLinkFromData
OleCreateLinkFromDataEx
OleCreateLinkToFileEx
OleGetIconOfFile
OleInitializeWOW
OleLoad
OleLockRunning
OleMetafilePictFromIconAndLabel
OleNoteObjectVisible
OleRegGetMiscStatus
OleSaveToStream
OleUninitialize
OpenOrCreateStream
SNB_UserSize
SNB_UserUnmarshal
STGMEDIUM_UserMarshal
StgGetIFillLockBytesOnFile
StgOpenAsyncDocfileOnIFillLockBytes
StgOpenStorageOnILockBytes
StringFromGUID2
StringFromIID
UtConvertDvtd16toDvtd32
UtGetDvtd16Info
UtGetDvtd32Info
WdtpInterfacePointer_UserMarshal
WriteClassStm
WriteFmtUserTypeStg

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7261e910592986bc957118014f9d233

Code Sign

73:c2:e8:4a:e6:53:2c:94:4e:85:92:3a:67:87:27:6aCertificate

Extended Key Usages

07:2e:f5:c7:26:39:14:88:81:4f:90:27:44:44:8b:06:b7:a5:f1:59Signer

Signature Validations

Verification

01/12/2022, 14:35 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 1024B - Virtual size: 648B

.text Size: 166KB - Virtual size: 165KB

.reloc Size: 2KB - Virtual size: 1KB

73:c2:e8:4a:e6:53:2c:94:4e:85:92:3a:67:87:27:6a
Certificate

07:2e:f5:c7:26:39:14:88:81:4f:90:27:44:44:8b:06:b7:a5:f1:59
Signer

01/12/2022, 14:35
Valid: false

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 1024B - Virtual size: 648B

.text
Size: 166KB - Virtual size: 165KB

.reloc
Size: 2KB - Virtual size: 1KB