Setup_Passowrd_1234[.]rar

Resubmissions

29/12/2022, 10:30

221229-mj1j2sga3z 3

29/12/2022, 10:28

221229-mhydasga3x 9

Sharing

Copy URL Twitter E-mail

General

Target

Setup_Passowrd_1234.rar
Size

1.4MB
MD5

5b1dcf4e258416368a6d71c706ead660
SHA1

89b6df7e1d398368f47d05317cf6ab2c828887da
SHA256

3f0384caf9db4a08864c2f426c359a16a04e4bb1e1194c818da4ff1b411d6f0f
SHA512

8cb97b098bdf372e13d8279b58f802f2f30c442720024f8d16e1ecc36ae91315c4dac7d8de87d071d7c0133d9586619e88070f11c64e7583ab4ac64c5e1ca023
SSDEEP

24576:v0P71CL7Rt3ayrYVN+4CNbvfCddhKSznSm8RKoHkuVE5MLyMkHKWnww7wt:c1WRthYXaNbn4dFznSmSKoFVEuL5kHfO

Score

N/A

Malware Config

Signatures

Files

Setup_Passowrd_1234.rar
.rar

Password: 1234
Setup.exe
.exe windows x64

Password: 1234

Code Sign

61:21:04:92:a4:3d:6c:80:46:47:f0:63:cf:1d:45:99
Certificate

Issuer

CN=Canon 12-35mm f\\/5.0L RF IS USM

Not Before

22/12/2022, 14:17

Not After

23/12/2032, 14:17

Subject

CN=Canon 12-35mm f\\/5.0L RF IS USM

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

b7:12:46:89:71:59:10:38:b8:ab:9c:48:66:5a:64:8e:11:1a:70:c3:ef:ff:9b:d9:ed:37:e9:09:95:6f:fa:ed
Signer

Actual PE Digest

b7:12:46:89:71:59:10:38:b8:ab:9c:48:66:5a:64:8e:11:1a:70:c3:ef:ff:9b:d9:ed:37:e9:09:95:6f:fa:ed

Digest Algorithm

sha256

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Canon 12-35mm f\\/5.0L RF IS USM

15/12/2022, 14:00
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
langz/Croatian.ini
langz/Danish.ini
langz/English.ini
langz/Finnish.ini
langz/Hebrew.ini
langz/Hungarian.ini
.ps1
langz/Indonesian.ini
langz/Japanese.ini
langz/Kazakh.ini
langz/Korean.ini
.ps1
langz/Kurdish.ini
langz/Norwegian.ini
langz/SimpChinese.ini
langz/Sinhala.ini
langz/Slovak.ini
langz/Swedish.ini
langz/Thai.ini
langz/TradChinese.ini
langz/Ukrainian.ini
langz/UyghurLatin.ini
langz/Uzbek.ini
langz/Vietnamese.ini

Resubmissions

Sharing

General

Malware Config

Signatures

Files

Password: 1234

Password: 1234

Code Sign

61:21:04:92:a4:3d:6c:80:46:47:f0:63:cf:1d:45:99Certificate

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

b7:12:46:89:71:59:10:38:b8:ab:9c:48:66:5a:64:8e:11:1a:70:c3:ef:ff:9b:d9:ed:37:e9:09:95:6f:fa:edSigner

Signature Validations

Verification

15/12/2022, 14:00 Valid: false

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rsrc Size: 97KB - Virtual size: 97KB

61:21:04:92:a4:3d:6c:80:46:47:f0:63:cf:1d:45:99
Certificate

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

b7:12:46:89:71:59:10:38:b8:ab:9c:48:66:5a:64:8e:11:1a:70:c3:ef:ff:9b:d9:ed:37:e9:09:95:6f:fa:ed
Signer

15/12/2022, 14:00
Valid: false

.text
Size: 1.2MB - Virtual size: 1.2MB

.rsrc
Size: 97KB - Virtual size: 97KB