IPTV MAC Generator[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

IPTV MAC Generator.zip
Size

14.3MB
MD5

2b4734a53f56124d2fa0e8e391d42caf
SHA1

0e886c84ebd4d992e6d5daafbb9de4181171f199
SHA256

d2f1b2bdb28403851660e9e13912541d09dbec062e38b9550a42f14f1bea0263
SHA512

1bfacc142143afe9693d601744512ff1433986c270ebd5bc6a8ab643e1e3aeef1ced03713d1fda87026455f4d45d0e37f429c9be03328f9001a69260126b0cd5
SSDEEP

393216:DxKK4HXeAIihTtJ+msUvgR/tkl0xgYQS0ZC1mq:Dx54uAIaL5whxgmmq

Score

7^/10

themida

Malware Config

Signatures

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

resource	yara_rule
static1/unpack001/IPTV MAC Generator.exe	themida

Files

IPTV MAC Generator.zip
.zip
IPTV MAC Generator.exe
.exe windows x64

Code Sign

2d:ee:7f:65:6f:90:66:8b:47:1b:60:40:b0:e8:3a:b5
Certificate

Issuer

CN=IPTV Services Root CA

Not Before

17/12/2022, 05:00

Not After

24/12/2032, 05:00

Subject

CN=IPTV Services Root CA

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

28/07/2022, 08:56

Not After

27/07/2033, 08:56

Subject

CN=Certum Timestamp 2022,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31/05/2021, 06:43

Not After

17/09/2029, 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: 11.5MB - Virtual size: 11.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 15B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 60KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.imports
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 213KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.themida
Size: - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Code Sign

2d:ee:7f:65:6f:90:66:8b:47:1b:60:40:b0:e8:3a:b5Certificate

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30Certificate

Extended Key Usages

Key Usages

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87Certificate

Extended Key Usages

Key Usages

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27Certificate

Key Usages

Signer

Headers

DLL Characteristics

File Characteristics

Sections

Size: 11.5MB - Virtual size: 11.5MB

Size: 15B - Virtual size: 12B

Size: 60KB - Virtual size: 213KB

.imports Size: 512B - Virtual size: 8KB

.rsrc Size: 213KB - Virtual size: 213KB

.themida Size: - Virtual size: 4.5MB

.boot Size: 2.8MB - Virtual size: 2.8MB

2d:ee:7f:65:6f:90:66:8b:47:1b:60:40:b0:e8:3a:b5
Certificate

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

.imports
Size: 512B - Virtual size: 8KB

.rsrc
Size: 213KB - Virtual size: 213KB

.themida
Size: - Virtual size: 4.5MB

.boot
Size: 2.8MB - Virtual size: 2.8MB