ziplikeapro[.]exe

Resubmissions

30/05/2023, 13:01

230530-p9ca9aaa21 6

30/05/2023, 12:56

230530-p6el7shf54 6

30/05/2023, 12:50

230530-p27geshf38 6

30/05/2023, 12:32

230530-pqt2yshh3s 6

Sharing

Copy URL Twitter E-mail

General

Target

ziplikeapro.exe
Size

11.9MB
MD5

0ec092e842f62e05399138fadbee7efe
SHA1

de6fe41d513f6af696a77ac5a0a380b07641e6e5
SHA256

6e18e5b53a69f0490299fddfecdf34f487cb2de5159ba6a0166ba513e8a73a60
SHA512

0960afaea375bc8b7f0fe96d64b9f3aa77ad2fd10aae2b1b0a0d3911a54faa53ab38096872497439a3c94574e579068aec6d7a0e65f7ca5f1e79d9c3c2d49cfc
SSDEEP

98304:dlH1Q/VRMSA0qto8pG2YqD/OLJZrqzRcKvabA+R2GNUGkn7fogccYhafQOYM/6F0:dlH1Q/3MfQ2Y0O3YO3zVhafQOYU1

Score

1^/10

Malware Config

Signatures

Files

ziplikeapro.exe
.exe windows x86

Password: infected

26ec764b85e3384ce5e62a04d32be789

Code Sign

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15/06/2016, 00:00

Not After

15/06/2024, 00:00

Subject

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:1e:1e:7e:86:b3:f2:39:02:ad:d1:e3
Certificate

Issuer

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

04/03/2021, 09:44

Not After

04/03/2024, 09:44

Subject

SERIALNUMBER=516185493,CN=MY TECH MEDIA LTD,O=MY TECH MEDIA LTD,STREET=11 Hamanofim,L=Herzliya,ST=Tel Aviv,C=IL,1.2.840.113549.1.9.1=#0c1561646d696e406d79746563686d656469612e6e6574,1.3.6.1.4.1.311.60.2.1.3=#1302494c,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

01:00:46:69:50:a6:04:a9:d9:70:e8:1d:d2:4d:41:9f
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Not Before

27/05/2021, 09:55

Not After

28/06/2032, 09:55

Subject

CN=Globalsign TSA for Advanced - G4,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

20/06/2018, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:f2:40:42:40:ce:fd:22:db:e9:6c:71:fc
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

20/02/2019, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:21:58:53:08:a2
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

18/03/2009, 10:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1d:6e:21:49:33:d3:a6:64:8c:5f:34:8b:c4:63:d4:68:30:f2:38:5d
Signer

Actual PE Digest

1d:6e:21:49:33:d3:a6:64:8c:5f:34:8b:c4:63:d4:68:30:f2:38:5d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
SetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
GetCommandLineA
RtlUnwind
GetCPInfo
IsValidLocale
ExitProcess
LCMapStringEx
QueryPerformanceFrequency
GetStringTypeW
GetFileInformationByHandleEx
AreFileApisANSI
SetFilePointerEx
SetFileInformationByHandle
FindNextFileW
FindFirstFileExW
CreateDirectoryW
FormatMessageA
GetTimeFormatW
GetDateFormatW
lstrlenW
lstrcpynW
GetStdHandle
GetConsoleOutputCP
GetConsoleMode
EnumSystemLocalesW
ReadConsoleW
GetTimeZoneInformation
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
WriteConsoleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
LCMapStringW
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
GetUserDefaultLCID
GetTempFileNameW
GetProfileIntW
SearchPathW
FindResourceExW
GetTempPathW
GetWindowsDirectoryW
GetTickCount
SystemTimeToTzSpecificLocalTime
OutputDebugStringW
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileAttributesW
VirtualProtect
GlobalGetAtomNameW
VerifyVersionInfoW
lstrcpyW
VerSetConditionMask
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
GetThreadLocale
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
SetErrorMode
CompareStringW
GlobalFindAtomW
LoadLibraryA
GetCurrentProcessId
GlobalAddAtomW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
ResumeThread
SuspendThread
SetThreadPriority
CreateEventW
SetEvent
GetSystemDirectoryW
EncodePointer
lstrcmpW
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleA
GetVersionExW
GetCurrentThreadId
GetCurrentThread
CopyFileW
FormatMessageW
GlobalFree
GlobalSize
DeviceIoControl
GetModuleFileNameW
SetLastError
CloseHandle
CreateProcessW
GetProcessId
MulDiv
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapFree
GetModuleHandleW
FindResourceW
LoadResource
LockResource
SizeofResource
WaitForSingleObject
GetCommandLineW
OutputDebugStringA
LocalFree
WideCharToMultiByte
GetLastError
MultiByteToWideChar
GlobalUnlock
GlobalLock
GlobalAlloc
GetProcAddress
FreeLibrary
LoadLibraryW
Sleep

user32

CharUpperW
SendDlgItemMessageA
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetIconInfo
DrawIconEx
CopyImage
LoadImageW
DestroyIcon
IsRectEmpty
OffsetRect
SetRectEmpty
DrawFocusRect
WindowFromPoint
ClientToScreen
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetNextDlgGroupItem
IsDialogMessageW
SetWindowTextW
MapVirtualKeyW
CheckDlgButton
WindowFromDC
GetComboBoxInfo
DestroyCursor
SetWindowRgn
UnionRect
UpdateLayeredWindow
EnableScrollBar
MonitorFromPoint
MoveWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
UnhookWindowsHookEx
GetTopWindow
GetClassLongW
SetWindowLongW
PtInRect
GetSysColorBrush
LoadCursorW
SystemParametersInfoW
DeleteMenu
RealChildWindowFromPoint
IsClipboardFormatAvailable
MessageBeep
SetRect
CharNextW
CopyAcceleratorTableW
InvalidateRgn
IntersectRect
GetDialogBaseUnits
EnumDisplayMonitors
DestroyMenu
EqualRect
CopyRect
GetMenuItemInfoW
GetAsyncKeyState
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawEdge
GetKeyNameTextW
LoadStringW
TrackMouseEvent
PostThreadMessageW
SetForegroundWindow
PostMessageW
EnableWindow
SendMessageW
VkKeyScanW
MessageBoxW
LoadBitmapW
EnumWindows
IsIconic
ShowWindow
GetWindowThreadProcessId
GetWindow
IsWindowVisible
SetLayeredWindowAttributes
GetClientRect
PostQuitMessage
InflateRect
GetClipboardData
GetWindowContextHelpId
DestroyCaret
GetCaretPos
ShowCaret
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
SetWindowPos
SetWindowContextHelpId
GetParent
MapDialogRect
IsWindow
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongW
GetDesktopWindow
GetMessageW
TranslateMessage
DispatchMessageW
PeekMessageW
GetKeyState
ValidateRect
GetCursorPos
SetWindowsHookExW
CallNextHookEx
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
ShowOwnedPopups
SetCursor
GetLastActivePopup
DrawStateW
UpdateWindow
InvalidateRect
FillRect
GetClassNameW
LoadMenuW
GetWindowRect
RegisterWindowMessageW
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
IsMenu
IsChild
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
IsZoomed
GetSystemMenu
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetMenuDefaultItem
RegisterClipboardFormatW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableW
DestroyAcceleratorTable
SetCursorPos
SetParent
BringWindowToTop
LockWindowUpdate
SetClassLongW
GetDoubleClickTime
CopyIcon
ModifyMenuW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
CharUpperBuffW
FrameRect
WaitMessage
HideCaret
InvertRect
DrawIcon
IsCharLowerW
MapVirtualKeyExW
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
GetUpdateRect
SubtractRect
SendNotifyMessageW
DrawFrameControl
DeferWindowPos
EndDeferWindowPos
GetDlgCtrlID
SetFocus
GetCapture
GetMenu
SetMenu
TrackPopupMenu
GetForegroundWindow
BeginPaint
EndPaint
RedrawWindow
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetPropW
GetPropW
RemovePropW
GetWindowTextW
GetWindowTextLengthW
AdjustWindowRectEx
ScreenToClient
MapWindowPoints
GetSysColor
GetSystemMetrics
GetWindowRgn
CreateMenu

gdi32

GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
StartDocW
SetArcDirection
ExtCreatePen
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
CreateFontIndirectW
GetTextMetricsW
DPtoLP
GetBkColor
GetTextColor
GetRgnBox
CreateCompatibleBitmap
CreateDIBitmap
GetPixel
GetTextCharsetInfo
CombineRgn
GetMapMode
SetRectRgn
GetDIBits
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
CreateRoundRectRgn
EndDoc
AbortDoc
GetCurrentObject
EnumFontFamiliesExW
OffsetRgn
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
LPtoDP
RoundRect
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetWindowOrgEx
GetViewportOrgEx
SetPixelV
GetTextFaceW
GetObjectW
CreateFontW
DeleteDC
GetDeviceCaps
CreateCompatibleDC
BitBlt
GetStockObject
CopyMetaFileW
CreateDCW
CreateBitmap
CreateSolidBrush
DeleteObject
SetBkColor
SetTextColor
GetObjectType
GetRegionData
CreatePolyPolygonRgn
CreateEllipticRgnIndirect
PolyBezier
Arc
GetTextExtentPoint32W
SelectObject
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
Escape
ExcludeClipRect
EnumFontFamiliesW
GetClipBox

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegOpenKeyExW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW

shell32

ShellExecuteW
SHGetKnownFolderPath
ShellExecuteExW
SHGetFileInfoW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetMalloc
DragFinish
DragQueryFileW
SHAppBarMessage
SHGetDesktopFolder
CommandLineToArgvW

comctl32

ImageList_GetIcon
ImageList_Draw
ImageList_AddMasked
ImageList_Add
ImageList_SetImageCount
ImageList_GetIconSize
ImageList_GetImageCount
InitCommonControlsEx

shlwapi

PathFindExtensionW
PathStripToRootW
StrFormatKBSizeW
PathRemoveFileSpecW
PathIsUNCW
PathFindFileNameW
ord12

uxtheme

CloseThemeData
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
GetThemeSysColor
GetWindowTheme
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
EndBufferedPaint
OpenThemeData
DrawThemeParentBackground
DrawThemeText
IsAppThemed
BeginBufferedPaint
BufferedPaintSetAlpha

ole32

StringFromGUID2
CoInitializeEx
CoCreateInstance
CoTaskMemFree
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoTaskMemAlloc
OleDuplicateData
ReleaseStgMedium
CoUninitialize
CLSIDFromString
CLSIDFromProgID
CoInitialize
CoDisconnectObject
CoGetClassObject
StgOpenStorageOnILockBytes
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
CoCreateGuid
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning

oleaut32

VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
OleCreateFontIndirect
LoadTypeLi
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString
SysAllocString
OleLoadPicture
VariantChangeTypeEx
VarBstrCmp
VarUdateFromDate

oledlg

OleUIBusyW

gdiplus

GdipCloneImage
GdiplusStartup
GdipFree
GdiplusShutdown
GdipGetImagePixelFormat
GdipGetImagePalette
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDeleteFont
GdipCreateFontFamilyFromName
GdipGetGenericFontFamilySansSerif
GdipCreateFont
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipCreateBitmapFromHICON
GdipDeleteRegion
GdipCreateRegionPath
GdipSetTextureWrapMode
GdipCreateTextureIAI
GdipCreatePathGradientFromPath
GdipCreateLineBrush
GdipCloneBrush
GdipDeleteBrush
GdipCreateSolidFill
GdipDeletePen
GdipCreatePen2
GdipMultiplyWorldTransform
GdipScaleMatrix
GdipGetSmoothingMode
GdipSetSmoothingMode
GdipCloneBitmapArea
GdipSetPathGradientWrapMode
GdipGetPathGradientPointCount
GdipSetPathGradientSurroundColorsWithCount
GdipSetPathGradientCenterColor
GdipSetPathGradientPresetBlend
GdipDeletePath
GdipCreatePath
GdipSetLineWrapMode
GdipSetLinePresetBlend
GdipMultiplyPathGradientTransform
GdipGetImageGraphicsContext
GdipTranslatePathGradientTransform
GdipScalePathGradientTransform
GdipSetPathGradientCenterPoint
GdipMultiplyLineTransform
GdipIsMatrixIdentity
GdipTranslateLineTransform
GdipScaleLineTransform
GdipRotateLineTransform
GdipMultiplyMatrix
GdipTranslateTextureTransform
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipSetStringFormatFlags
GdipGetStringFormatFlags
GdipResetClip
GdipSetClipPath
GdipSetClipRegion
GdipMeasureString
GdipDrawString
GdipTransformMatrixPoints
GdipResetWorldTransform
GdipGetCellDescent
GdipGetFontSize
GdipGetDpiY
GdipGetEmHeight
GdipGetFontStyle
GdipGetFamily
GdipDeleteFontFamily
GdipDrawImageRectRect
GdipSetImageAttributesColorMatrix
GdipSetCompositingMode
GdipGetCompositingMode
GdipGetInterpolationMode
GdipDrawArc
GdipFillEllipse
GdipDrawEllipse
GdipFillRectangle
GdipDrawRectangle
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipDisposeImage
GdipGetImageWidth
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipSetInterpolationMode
GdipDrawImageRectI
GdipDrawLine
GdipGetImageHeight
GdipGetMatrixElements
GdipSetMatrixElements
GdipSetPenDashStyle
GdipSetPenDashArray
GdipSetPenDashCap197819
GdipSetPenDashOffset
GdipSetPenStartCap
GdipSetPenEndCap
GdipSetPenLineJoin
GdipSetPenMiterLimit
GdipCreateMatrix
GdipDeleteMatrix
GdipGetBrushType
GdipGetLineTransform
GdipGetPathGradientTransform
GdipGetTextureTransform
GdipGetWorldTransform
GdipSetLineTransform
GdipSetPathGradientTransform
GdipSetTextureTransform
GdipSetWorldTransform
GdipCloneRegion
GdipCombineRegionRegion
GdipCombineRegionPath
GdipGetRegionHRgn
GdipGetPathWorldBounds
GdipDrawPath
GdipFillRegion
GdipFillPath
GdipAddPathRectangle
GdipAddPathEllipse
GdipAddPathPath
GdipSetPathFillMode
GdipAddPathBezier
GdipAddPathLine2
GdipClosePathFigure
GdipStartPathFigure
GdipAddPathLine
GdipAddPathArc
GdipRotateMatrix
GdipTranslateMatrix
GdipTransformPath
GdipSetPixelOffsetMode
GdipSetPageUnit
GdipGraphicsClear
GdipAlloc

winhttp

WinHttpWriteData
WinHttpSendRequest
WinHttpCloseHandle
WinHttpSetTimeouts
WinHttpReceiveResponse
WinHttpQueryHeaders
WinHttpSetOption
WinHttpOpenRequest
WinHttpConnect
WinHttpCrackUrl
WinHttpReadData
WinHttpQueryDataAvailable
WinHttpOpen

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

dwmapi

DwmIsCompositionEnabled
DwmExtendFrameIntoClientArea

Sections

.text
Size: 4.4MB - Virtual size: 4.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 753KB - Virtual size: 753KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6.4MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 301KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

Password: infected

26ec764b85e3384ce5e62a04d32be789

Code Sign

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0fCertificate

Extended Key Usages

Key Usages

0e:1e:1e:7e:86:b3:f2:39:02:ad:d1:e3Certificate

Extended Key Usages

Key Usages

01:00:46:69:50:a6:04:a9:d9:70:e8:1d:d2:4d:41:9fCertificate

Extended Key Usages

Key Usages

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74Certificate

Key Usages

01:f2:40:42:40:ce:fd:22:db:e9:6c:71:fcCertificate

Key Usages

04:00:00:00:00:01:21:58:53:08:a2Certificate

Key Usages

1d:6e:21:49:33:d3:a6:64:8c:5f:34:8b:c4:63:d4:68:30:f2:38:5dSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

winhttp

version

oleacc

imm32

winmm

dwmapi

Sections

.text Size: 4.4MB - Virtual size: 4.4MB

.rdata Size: 753KB - Virtual size: 753KB

.data Size: 52KB - Virtual size: 73KB

.rsrc Size: 6.4MB - Virtual size: 6.4MB

.reloc Size: 301KB - Virtual size: 301KB

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

0e:1e:1e:7e:86:b3:f2:39:02:ad:d1:e3
Certificate

01:00:46:69:50:a6:04:a9:d9:70:e8:1d:d2:4d:41:9f
Certificate

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

01:f2:40:42:40:ce:fd:22:db:e9:6c:71:fc
Certificate

04:00:00:00:00:01:21:58:53:08:a2
Certificate

1d:6e:21:49:33:d3:a6:64:8c:5f:34:8b:c4:63:d4:68:30:f2:38:5d
Signer

.text
Size: 4.4MB - Virtual size: 4.4MB

.rdata
Size: 753KB - Virtual size: 753KB

.data
Size: 52KB - Virtual size: 73KB

.rsrc
Size: 6.4MB - Virtual size: 6.4MB

.reloc
Size: 301KB - Virtual size: 301KB