StM_setup242-re[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

StM_setup242-re.exe
Size

994KB
MD5

1880e11263f714eee7172bbcaf473ef5
SHA1

c336590c77a9369f0ab9978143a348575ee2acb9
SHA256

b8e6577707a8bbf65ac4e667be48b36ecd6461453ad2e89dad77d44786bf4495
SHA512

7a9c62e2b935acead0ef80eb700285f4114e43a669b2d8b516d34e42236a3f273454c4afa86f54c9268f9ba7e1a2dfe883666340720d91200e50450cfe332f9a
SSDEEP

24576:L2UbO1p6Ry8CQzbiH1rCC0nOoNFWA/ZXntC68YaXat:L2Hv8DzbSrWnNIetCoaq

Score

1^/10

Malware Config

Signatures

Files

StM_setup242-re.exe
.exe windows x86

Code Sign

01:00:21
Certificate

Issuer

CN=Certum CA,O=Unizeto Sp. z o.o.,C=PL

Not Before

12/07/2002, 16:31

Not After

12/07/2012, 16:31

Subject

CN=Certum Level I,O=Unizeto Sp. z o.o.,C=PL

02:2f:0d
Certificate

Issuer

CN=Certum CA,O=Unizeto Sp. z o.o.,C=PL

Not Before

28/08/2002, 17:05

Not After

28/08/2012, 17:05

Subject

CN=Certum Time-Stamping Authority,O=Unizeto Sp. z o.o.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

04:53:a1
Certificate

Issuer

CN=Certum Level I,O=Unizeto Sp. z o.o.,C=PL

Not Before

01/10/2008, 18:25

Not After

30/12/2008, 18:25

Subject

CN=Glenn Van Loon,O=Glenn Van Loon,C=BE,1.2.840.113549.1.9.1=#0c18676c656e6e40737461727475706d616e616765722e6f7267

Extended Key Usages

ExtKeyUsageCodeSigning

3b:77:a6:40:87:c4:a1:b7:39:83:36:d3:8a:00:88:8e:5a:d3:38:72
Signer

Actual PE Digest

3b:77:a6:40:87:c4:a1:b7:39:83:36:d3:8a:00:88:8e:5a:d3:38:72

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Code Sign

01:00:21Certificate

02:2f:0dCertificate

Extended Key Usages

04:53:a1Certificate

Extended Key Usages

3b:77:a6:40:87:c4:a1:b7:39:83:36:d3:8a:00:88:8e:5a:d3:38:72Signer

Headers

DLL Characteristics

File Characteristics

Sections

CODE Size: 36KB - Virtual size: 36KB

DATA Size: 1024B - Virtual size: 588B

BSS Size: - Virtual size: 3KB

.idata Size: 2KB - Virtual size: 2KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: - Virtual size: 2KB

.rsrc Size: 10KB - Virtual size: 10KB

01:00:21
Certificate

02:2f:0d
Certificate

04:53:a1
Certificate

3b:77:a6:40:87:c4:a1:b7:39:83:36:d3:8a:00:88:8e:5a:d3:38:72
Signer

CODE
Size: 36KB - Virtual size: 36KB

DATA
Size: 1024B - Virtual size: 588B

BSS
Size: - Virtual size: 3KB

.idata
Size: 2KB - Virtual size: 2KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: - Virtual size: 2KB

.rsrc
Size: 10KB - Virtual size: 10KB