Setup[.]exe[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

Setup.exe.zip
Size

1.6MB
MD5

03428edd1481c488c109f88944d58aaf
SHA1

8a6571e3d6abd7222de653a5adcb73c04e3d8d61
SHA256

8681fdfa82b5583e1400279bdea169028d38709edc20317fb4365c0ae342ac0c
SHA512

30210f5448dae22e9fbd1071e803053f218adb307a6a4676e798814e317d32e3b57800f7e4eb16591e38004a39069623bf153111c99c595f12b153640fb24554
SSDEEP

49152:kRMhG3ok7wYZ25rt5Mze1fyp+hn1sK9qsGmtx:kRMhqhw5zMKyw/qsGmX

Score

1^/10

Malware Config

Signatures

Files

Setup.exe.zip
.zip
Setup.exe
.exe windows x86

3dfa48a9d2ba812bd13e7a47eb002056

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

80:2e:3d:99:a9:73:db:39:7b:36:f1:26:0f:70:f4:a7
Certificate

Issuer

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Not Before

18/10/2022, 00:00

Not After

18/10/2023, 23:59

Subject

CN=United Parcel Service\, Inc.,O=United Parcel Service\, Inc.,ST=New Jersey,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

33:7c:b3:e6:22:4f:0a:ff:69:86:be:60:ea:0b:67:67:b4:f9:98:79
Signer

Actual PE Digest

33:7c:b3:e6:22:4f:0a:ff:69:86:be:60:ea:0b:67:67:b4:f9:98:79

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=United Parcel Service\, Inc.,O=United Parcel Service\, Inc.,ST=New Jersey,C=US

07/02/2023, 20:42
Valid: true

Chain 1

CN=United Parcel Service\, Inc.,O=United Parcel Service\, Inc.,ST=New Jersey,C=US

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

shlwapi

PathRemoveFileSpecW
StrFormatKBSizeA
PathStripToRootA
PathRemoveExtensionA
PathFindFileNameA
PathFindExtensionA
PathIsUNCA
ord437
PathGetDriveNumberA

mpr

WNetGetConnectionA

kernel32

SetConsoleCtrlHandler
SetEnvironmentVariableW
FreeEnvironmentStringsW
LoadResource
LockResource
SizeofResource
FindResourceW
WideCharToMultiByte
LocalFree
FormatMessageA
GetCommandLineA
CloseHandle
SetEvent
GetEnvironmentStringsW
CreateEventA
ResumeThread
CreateDirectoryA
GetTempPathA
GetWindowsDirectoryA
GetModuleFileNameA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetSystemInfo
FreeLibrary
GetProcAddress
LoadLibraryA
GetDiskFreeSpaceExA
WritePrivateProfileStringA
GetPrivateProfileSectionA
GetPrivateProfileSectionNamesA
CreateFileA
GetLastError
MultiByteToWideChar
GetUserDefaultLangID
GetTickCount
GetVersionExA
GetNativeSystemInfo
GetModuleHandleA
lstrcmpiA
VerSetConditionMask
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GlobalFlags
OutputDebugStringW
RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
VirtualAlloc
VirtualQuery
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetFullPathNameW
HeapQueryInformation
QueryPerformanceFrequency
SetStdHandle
ExitProcess
GetStdHandle
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetStringTypeW
SetFilePointerEx
GetConsoleMode
ReadConsoleW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetFileAttributesExW
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
ResetEvent
LocalUnlock
LocalLock
GetUserDefaultLCID
ReplaceFileA
GetTempFileNameA
GetDiskFreeSpaceA
SearchPathA
GetProfileIntA
SetFileTime
SetFileAttributesA
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
SetErrorMode
FindResourceExW
lstrcpyA
GetStringTypeExA
MoveFileA
GetShortPathNameA
LoadLibraryExA
DuplicateHandle
GetVolumeInformationA
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
SetFileAttributesW
GetConsoleOutputCP
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetCommandLineW
DeleteFileA
FindClose
GetFullPathNameA
GetFileSize
FlushFileBuffers
GetCurrentDirectoryA
GetCPInfo
GetOEMCP
VirtualProtect
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
WriteConsoleW
GetThreadLocale
SystemTimeToFileTime
GetAtomNameA
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
CreateSemaphoreA
WaitForMultipleObjects
ReleaseMutex
ReleaseSemaphore
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FileTimeToLocalFileTime
SuspendThread
SetThreadPriority
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
MulDiv
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
SetLastError
LeaveCriticalSection
EnterCriticalSection
FindFirstFileA
Process32Next
Process32First
CreateToolhelp32Snapshot
GetLocalTime
OpenProcess
TerminateProcess
GetCurrentProcessId
GetFileAttributesA
GetEnvironmentVariableA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
RaiseException
DecodePointer
GetACP
GetTimeZoneInformation
VerifyVersionInfoA
CopyFileA
lstrlenA
lstrcmpA
LocalAlloc
GetSystemWow64DirectoryA
GetComputerNameExA
GetSystemDirectoryA
CreateProcessA
GetCurrentThread
GetExitCodeProcess
GetCurrentProcess
Sleep
CreateMutexA
WaitForSingleObject
RemoveDirectoryA
FindNextFileA

user32

CopyAcceleratorTableA
DestroyAcceleratorTable
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
MapVirtualKeyExA
IsCharLowerA
GetKeyboardLayout
PostThreadMessageA
GetComboBoxInfo
MonitorFromPoint
UpdateLayeredWindow
UnionRect
FrameRect
SetCursorPos
GetSystemMenu
LoadMenuW
IsZoomed
DrawFrameControl
DrawEdge
SetParent
SetWindowRgn
DrawStateA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
GetKeyNameTextA
MapVirtualKeyA
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
MessageBeep
GetIconInfo
DrawIconEx
DrawFocusRect
GetNextDlgGroupItem
ReuseDDElParam
UnpackDDElParam
LoadImageA
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
BringWindowToTop
GetMenuDefaultItem
CreatePopupMenu
LoadImageW
TrackMouseEvent
LoadCursorW
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
CharUpperA
DestroyIcon
KillTimer
SetTimer
DeleteMenu
GetDialogBaseUnits
MapDialogRect
GetAsyncKeyState
CopyImage
SystemParametersInfoA
GetMenuItemInfoA
DestroyMenu
RealChildWindowFromPoint
GetSysColorBrush
MsgWaitForMultipleObjectsEx
IntersectRect
OffsetRect
SetRectEmpty
ShowOwnedPopups
GetCursorPos
TranslateMessage
GetMessageA
PostQuitMessage
GetWindowThreadProcessId
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
ScrollWindowEx
IsWindowEnabled
SendDlgItemMessageA
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextA
SetDlgItemTextA
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
LockWindowUpdate
GetLastActivePopup
GetTopWindow
SetWindowLongA
GetWindowLongA
PtInRect
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
GetWindowRect
GetWindowTextLengthA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
IsClipboardFormatAvailable
GetUpdateRect
GetDCEx
EnumChildWindows
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
IsWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
PostMessageA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
LoadBitmapW
GetParent
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
ScreenToClient
SendNotifyMessageA
MonitorFromRect
InSendMessage
CreateMenu
WindowFromDC
GetWindowRgn
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
DestroyCursor
DrawTextExA
DrawTextA
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
UnregisterClassA
IsRectEmpty
InflateRect
LoadIconW
SetClassLongA
InvalidateRect
DrawIcon
IsIconic
GetClassNameA
EnumWindows
FindWindowA
GetClassLongA
GetWindowTextA
IsWindowVisible
ExitWindowsEx
GetSystemMetrics
CopyIcon
LoadCursorA
FillRect
SetCursor
GetClientRect
MessageBoxA
LoadStringA
GetSysColor
EnableWindow
SendMessageA
SetRect
GetTabbedTextExtentA
GetWindow
GetTabbedTextExtentW
GetMenuBarInfo

gdi32

SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextColor
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
StartDocA
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
TextOutA
ExtTextOutA
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
GetTextExtentPoint32A
GetTextMetricsA
EnumFontFamiliesExA
CreatePalette
SaveDC
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetDIBits
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
LPtoDP
GetCharWidthA
StretchDIBits
GetRgnBox
OffsetRgn
GetCurrentObject
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
CloseMetaFile
CreateMetaFileA
DeleteMetaFile
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextExtentPointA
GetTextExtentPoint32W
GetTextFaceA
RestoreDC
RectVisible
PtVisible
PlayMetaFile
OffsetClipRgn
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetCurrentPositionEx
GetClipRgn
GetClipBox
ExcludeClipRect
CreateFontIndirectA
GetObjectA
CreateSolidBrush
Rectangle
CreateFontA
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreatePen
DeleteDC
CopyMetaFileA
CreateDCA
GetDeviceCaps
CreateBitmap
CreateDIBPatternBrushPt
CreateHatchBrush
CreatePatternBrush
CreateRectRgn
DeleteObject
GetNearestPaletteIndex
Escape

msimg32

TransparentBlt
AlphaBlend

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
GetJobA

advapi32

RegEnumKeyExA
RegOpenKeyExW
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegSetValueA
GetFileSecurityA
RevertToSelf
MapGenericMask
ImpersonateSelf
RegSetValueExA
RegOpenKeyA
RegDeleteValueA
RegCreateKeyExA
GetUserNameA
LookupPrivilegeValueA
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
IsValidSecurityDescriptor
InitializeSecurityDescriptor
InitializeAcl
GetLengthSid
FreeSid
DuplicateToken
AllocateAndInitializeSid
AdjustTokenPrivileges
AddAccessAllowedAce
AccessCheck
OpenThreadToken
OpenProcessToken
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
SetFileSecurityA

shell32

SHAddToRecentDocs
SHAppBarMessage
ExtractIconA
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
DragQueryFileA
DragFinish
ShellExecuteExA
ShellExecuteA
SHBrowseForFolderA
SHGetMalloc

uxtheme

DrawThemeBackground
CloseThemeData
GetThemeColor
OpenThemeData
GetThemeSysColor
GetWindowTheme
IsAppThemed
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
DrawThemeText
DrawThemeParentBackground
GetCurrentThemeName

ole32

CLSIDFromProgID
StgOpenStorageOnILockBytes
StgIsStorageFile
CreateILockBytesOnHGlobal
CreateFileMoniker
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleRegGetMiscStatus
OleRegEnumVerbs
StgCreateDocfileOnILockBytes
WriteClassStm
GetHGlobalFromILockBytes
CreateGenericComposite
CreateItemMoniker
OleCreate
OleCreateFromData
OleCreateLinkFromData
StringFromGUID2
StgOpenStorage
StgCreateDocfile
OleLockRunning
OleSetMenuDescriptor
PropVariantCopy
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleCreateStaticFromData
OleCreateLinkToFile
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
CreateStreamOnHGlobal
CoInitializeEx
CLSIDFromString
CoDisconnectObject
CoRevokeClassObject
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
CreateBindCtx
CoTreatAsClass
WriteClassStg
ReadClassStg
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
OleCreateFromFile
OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleGetIconOfClass
OleRun
CreateDataAdviseHolder
CreateOleAdviseHolder
GetRunningObjectTable
OleIsRunning
CoGetMalloc
OleQueryLinkFromData
OleQueryCreateFromData
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoGetClassObject
CoRegisterClassObject
CoRegisterMessageFilter

oleaut32

VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
VarCyFromStr
SysAllocString
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
VarDecFromStr
VarDateFromStr
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayRedim
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysReAllocStringLen
SysStringLen
RegisterTypeLi
LoadRegTypeLi
SafeArrayUnlock
SafeArrayAccessData
VariantInit
SysAllocStringByteLen
SysStringByteLen
SysFreeString
LoadTypeLi
VariantChangeType
VariantClear
SysAllocStringLen

oledlg

ord8

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 552KB - Virtual size: 551KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 155KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
checksums.txt

Sharing

General

Malware Config

Signatures

Files

3dfa48a9d2ba812bd13e7a47eb002056

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16Certificate

Extended Key Usages

Key Usages

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0aCertificate

Extended Key Usages

Key Usages

80:2e:3d:99:a9:73:db:39:7b:36:f1:26:0f:70:f4:a7Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43Certificate

Extended Key Usages

Key Usages

33:7c:b3:e6:22:4f:0a:ff:69:86:be:60:ea:0b:67:67:b4:f9:98:79Signer

Signature Validations

Verification

07/02/2023, 20:42 Valid: true

Chain 1

Headers

DLL Characteristics

File Characteristics

Imports

version

shlwapi

mpr

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.rdata Size: 552KB - Virtual size: 551KB

.data Size: 32KB - Virtual size: 97KB

.rsrc Size: 155KB - Virtual size: 154KB

.reloc Size: 204KB - Virtual size: 204KB

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

80:2e:3d:99:a9:73:db:39:7b:36:f1:26:0f:70:f4:a7
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

33:7c:b3:e6:22:4f:0a:ff:69:86:be:60:ea:0b:67:67:b4:f9:98:79
Signer

07/02/2023, 20:42
Valid: true

.text
Size: 2.4MB - Virtual size: 2.4MB

.rdata
Size: 552KB - Virtual size: 551KB

.data
Size: 32KB - Virtual size: 97KB

.rsrc
Size: 155KB - Virtual size: 154KB

.reloc
Size: 204KB - Virtual size: 204KB