9dd6aeb43f3e55d6d0bd78ba98ede1f9a28073e2982350170b2f757f88a18eda

Sharing

Copy URL Twitter E-mail

General

Target

9dd6aeb43f3e55d6d0bd78ba98ede1f9a28073e2982350170b2f757f88a18eda
Size

331KB
MD5

b4c6b09b6ac9eb1da0013b878bb52c49
SHA1

8b5fbd693b3cf117c942b834a97696181f9e57e0
SHA256

9dd6aeb43f3e55d6d0bd78ba98ede1f9a28073e2982350170b2f757f88a18eda
SHA512

2d1c88a63605be66551fb89077d53da251132f7c12824f71c8e56b229b1678b9c035dc499be6caa1fa5664e940890f15236e5e71ec5e4580db7351e796044cbd
SSDEEP

6144:FGAef6UbFIJC3J7oSqBs2r6CF5fbSP9mR/lBQJ0:FG1fGJC3dS5bSP9ml

Score

1^/10

Malware Config

Signatures

Files

9dd6aeb43f3e55d6d0bd78ba98ede1f9a28073e2982350170b2f757f88a18eda
.exe windows x86

fcb751ed1e010c917af90183cba4eaf1

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0c:2d:e8:78:ae:bf:f2:62:a7:c0:98:be:f1:0a:a2:f0
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

04/08/2021, 00:00

Not After

17/08/2024, 23:59

Subject

SERIALNUMBER=01-09-942549,CN=FinalWire Kft.,O=FinalWire Kft.,L=Budapest,C=HU,1.3.6.1.4.1.311.60.2.1.3=#13024855,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

bd:c6:81:d7:ef:f0:b7:59:ab:ff:68:ad:ba:ff:c4:9f:48:cc:ed:3d
Signer

Actual PE Digest

bd:c6:81:d7:ef:f0:b7:59:ab:ff:68:ad:ba:ff:c4:9f:48:cc:ed:3d

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=01-09-942549,CN=FinalWire Kft.,O=FinalWire Kft.,L=Budapest,C=HU,1.3.6.1.4.1.311.60.2.1.3=#13024855,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

27/03/2023, 15:30
Valid: true

Chain 1

SERIALNUMBER=01-09-942549,CN=FinalWire Kft.,O=FinalWire Kft.,L=Budapest,C=HU,1.3.6.1.4.1.311.60.2.1.3=#13024855,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Chain 2

SERIALNUMBER=01-09-942549,CN=FinalWire Kft.,O=FinalWire Kft.,L=Budapest,C=HU,1.3.6.1.4.1.311.60.2.1.3=#13024855,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileApisToOEM
FreeConsole
SetConsoleMode
MultiByteToWideChar
GetConsoleMode
GetStdHandle
GetModuleHandleA
GetLastError
GetProcAddress
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
Sleep
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
RaiseException
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
HeapFree
GetCPInfo
LCMapStringA
LCMapStringW
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapAlloc
ExitProcess
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualAlloc
HeapReAlloc
GetConsoleCP
FlushFileBuffers
ReadFile
SetFilePointer
CloseHandle
HeapSize
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
LoadLibraryA
InitializeCriticalSectionAndSpinCount
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetLocaleInfoW
CreateFileA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 176KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fcb751ed1e010c917af90183cba4eaf1

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

0c:2d:e8:78:ae:bf:f2:62:a7:c0:98:be:f1:0a:a2:f0Certificate

Extended Key Usages

Key Usages

bd:c6:81:d7:ef:f0:b7:59:ab:ff:68:ad:ba:ff:c4:9f:48:cc:ed:3dSigner

Signature Validations

Verification

27/03/2023, 15:30 Valid: true

Chain 1

Chain 2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comdlg32

Sections

.text Size: 118KB - Virtual size: 118KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 176KB - Virtual size: 183KB

.rsrc Size: 1KB - Virtual size: 1KB

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

0c:2d:e8:78:ae:bf:f2:62:a7:c0:98:be:f1:0a:a2:f0
Certificate

bd:c6:81:d7:ef:f0:b7:59:ab:ff:68:ad:ba:ff:c4:9f:48:cc:ed:3d
Signer

27/03/2023, 15:30
Valid: true

.text
Size: 118KB - Virtual size: 118KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 176KB - Virtual size: 183KB

.rsrc
Size: 1KB - Virtual size: 1KB