3b65d06edafd3a569055c9d85502d19a[.]bin

Sharing

Copy URL Twitter E-mail

General

Target

3b65d06edafd3a569055c9d85502d19a.bin
Size

3.1MB
MD5

280afddafd88b057122f3ac89b4e8453
SHA1

59667d1cd1c8513ce5049d875f78bfc0935c9b1d
SHA256

0b63b2dadf71c58fbc9b0831082be28850c21b5463004b7fcbf50bfdb131c7e0
SHA512

c0b7a26d3cf17f24046a7c93173b31a38d473fce3cbb1f954cc1b878ffa6ed237fd95bf68dfed51d68d7252f31a9b5ba9fa803d5025587081fe23d1f8a0665a5
SSDEEP

98304:bw1VvRhXyqxSOBS5AgnCMPAIF06Jsgjhq:bgxS6S7CMbJswq

Score

1^/10

Malware Config

Signatures

Files

3b65d06edafd3a569055c9d85502d19a.bin
.zip

Password: infected
ac9d563c6e52413c83b931ccbc1715b743965a983bc4e89f260519e224000bfa.exe
.exe windows x64

Password: infected

5e2e334cecee9b450f48fa99ae5ef401

Code Sign

29:43:9b:e8:07:84:37:b1:47:dc:cc:b2:b0:d3:b4:b0
Certificate

Issuer

CN=Colorful iGame S790-X ZNG Edition V35

Not Before

01/12/2022, 17:37

Not After

02/12/2032, 17:37

Subject

CN=Colorful iGame S790-X ZNG Edition V35

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ec:3e:73:69:1e:66:d4:91:bc:8a:11:fc:6b:9f:19:9f:3d:1e:c0:4a:8e:85:55:5a:1c:54:f2:4b:9b:88:de:e4
Signer

Actual PE Digest

ec:3e:73:69:1e:66:d4:91:bc:8a:11:fc:6b:9f:19:9f:3d:1e:c0:4a:8e:85:55:5a:1c:54:f2:4b:9b:88:de:e4

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Colorful iGame S790-X ZNG Edition V35

02/02/2023, 17:54
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

shell32

SHGetIconOverlayIndexA

mscoree

_CorExeMain

advapi32

RegQueryValueA

user32

EndPaint

kernel32

GetModuleHandleA

Sections

.pexe
Size: - Virtual size: 892KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

5e2e334cecee9b450f48fa99ae5ef401

Code Sign

29:43:9b:e8:07:84:37:b1:47:dc:cc:b2:b0:d3:b4:b0Certificate

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

ec:3e:73:69:1e:66:d4:91:bc:8a:11:fc:6b:9f:19:9f:3d:1e:c0:4a:8e:85:55:5a:1c:54:f2:4b:9b:88:de:e4Signer

Signature Validations

Verification

02/02/2023, 17:54 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

shell32

mscoree

advapi32

user32

kernel32

Sections

.pexe Size: - Virtual size: 892KB

.rsrc Size: 2.3MB - Virtual size: 2.3MB

.reloc Size: 102KB - Virtual size: 101KB

29:43:9b:e8:07:84:37:b1:47:dc:cc:b2:b0:d3:b4:b0
Certificate

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

ec:3e:73:69:1e:66:d4:91:bc:8a:11:fc:6b:9f:19:9f:3d:1e:c0:4a:8e:85:55:5a:1c:54:f2:4b:9b:88:de:e4
Signer

02/02/2023, 17:54
Valid: false

.pexe
Size: - Virtual size: 892KB

.rsrc
Size: 2.3MB - Virtual size: 2.3MB

.reloc
Size: 102KB - Virtual size: 101KB