8506622623c1dab6ace3cd0348c2c6dd82ceaf4b173ab55d0c4f25f748c55ff7

Sharing

Copy URL

Twitter E-mail

General

Target

8506622623c1dab6ace3cd0348c2c6dd82ceaf4b173ab55d0c4f25f748c55ff7
Size

58KB
MD5

6aaec1a6fea8c54c7ed78bd6ac56bb66
SHA1

b6602623ca9ce3f83beba250628dd74e77fd1271
SHA256

8506622623c1dab6ace3cd0348c2c6dd82ceaf4b173ab55d0c4f25f748c55ff7
SHA512

fcdc0ab74fbadce35368b00cf611e4fb2c34f67c2219554accb6dd12d28262d3be212b36acd3e046ffb47a629da3af9bfbf148802776f78b28de083c0c761abd
SSDEEP

768:bFgi9hrOJYEZaVCrcOFfMriGyn5px5LccKyDKC3pxgRAko9vjTEFiR:bFgChrOJYEZao3hj5LfNDTW9o9v3ei

Score

1^/10

Malware Config

Signatures

Files

8506622623c1dab6ace3cd0348c2c6dd82ceaf4b173ab55d0c4f25f748c55ff7
.exe windows x86

af75a3652abe3b6bcab9a1a792d57f35

Code Sign

22:d6:05:52:5f:df:27:a2:4d:d2:6e:0d:52:68:d2:23
Certificate

Issuer

CN=Kinco,O=HMI,1.2.840.113549.1.9.1=#0c0e6c696e7979406b696e636f2e636e

Not Before

28-04-2023 01:52

Not After

31-12-2039 23:59

Subject

CN=Kinco,O=HMI,1.2.840.113549.1.9.1=#0c0e6c696e7979406b696e636f2e636e

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03-05-2023 00:00

Not After

02-08-2034 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02-05-2019 00:00

Not After

18-01-2038 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e7:7b:29:08:2a:c1:2a:ad:12:db:4c:7c:2d:bb:63:88:a7:e4:97:40:40:79:8c:60:ba:31:15:19:13:2c:44:8a
Signer

Actual PE Digest

e7:7b:29:08:2a:c1:2a:ad:12:db:4c:7c:2d:bb:63:88:a7:e4:97:40:40:79:8c:60:ba:31:15:19:13:2c:44:8a

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Kinco,O=HMI,1.2.840.113549.1.9.1=#0c0e6c696e7979406b696e636f2e636e

03-05-2023 12:08
Valid: false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
LoadLibraryA
FreeLibrary
OutputDebugStringA
Sleep
GetProcAddress
WaitForSingleObject
OpenProcess
CreateThread
FlushFileBuffers
LCMapStringW
LCMapStringA
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
SetFilePointer
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
VirtualAlloc
WriteFile
RtlUnwind
GetLastError
GetFileAttributesA
RaiseException
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
TerminateProcess
GetCurrentProcess
HeapAlloc
SetUnhandledExceptionFilter
HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
CloseHandle

user32

BeginPaint
EndPaint
PostQuitMessage
DestroyWindow
DefWindowProcA
CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
PostMessageA

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af75a3652abe3b6bcab9a1a792d57f35

Code Sign

22:d6:05:52:5f:df:27:a2:4d:d2:6e:0d:52:68:d2:23Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

e7:7b:29:08:2a:c1:2a:ad:12:db:4c:7c:2d:bb:63:88:a7:e4:97:40:40:79:8c:60:ba:31:15:19:13:2c:44:8aSigner

Signature Validations

Verification

03-05-2023 12:08 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 8KB

.rsrc Size: 4KB - Virtual size: 3KB

22:d6:05:52:5f:df:27:a2:4d:d2:6e:0d:52:68:d2:23
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

e7:7b:29:08:2a:c1:2a:ad:12:db:4c:7c:2d:bb:63:88:a7:e4:97:40:40:79:8c:60:ba:31:15:19:13:2c:44:8a
Signer

03-05-2023 12:08
Valid: false

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 4KB - Virtual size: 3KB