34A0F848BBCF609398FBFFBC14A3B070F6E5C15C49877[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

34A0F848BBCF609398FBFFBC14A3B070F6E5C15C49877.exe
Size

1.7MB
MD5

cad2343aa241b7c47a41404ad14b7b4b
SHA1

9a8d4178faf1f9e001420510be5273eb75121881
SHA256

34a0f848bbcf609398fbffbc14a3b070f6e5c15c4987785c29db8de7d46f9bd6
SHA512

b6cf8dd3c5e37c13bf9edbcfc72b1e7241e61d8331075cd11f5a9661248c78228b34c5cbe38e0b2acf2ae6873a8dc1fd742575823d943d17e2447bb5fd19144f
SSDEEP

24576:e0zLMUH1GVrdsa1lLEipOSjG2L6Pyq/QPs/jROoB:eF8GVrdV0i62L6PyfKtJB

Score

1^/10

Malware Config

Signatures

Files

34A0F848BBCF609398FBFFBC14A3B070F6E5C15C49877.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

7b:f1:80:e7:ad:8d:d9:96:45:06:61:eb:19:ac:e1:30
Certificate

Issuer

CN=HONOR MagicBook X 15 i5/8/512GB Space Grey (BDR-WDH)

Not Before

27/07/2023, 09:49

Not After

28/07/2033, 09:49

Subject

CN=HONOR MagicBook X 15 i5/8/512GB Space Grey (BDR-WDH)

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

fc:0c:78:ab:b2:b5:df:2f:5a:48:f9:f9:13:5a:a7:4a:69:a5:64:2a:5d:79:e9:c0:26:14:2b:b5:56:29:3a:9f
Signer

Actual PE Digest

fc:0c:78:ab:b2:b5:df:2f:5a:48:f9:f9:13:5a:a7:4a:69:a5:64:2a:5d:79:e9:c0:26:14:2b:b5:56:29:3a:9f

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 502B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

7b:f1:80:e7:ad:8d:d9:96:45:06:61:eb:19:ac:e1:30Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

fc:0c:78:ab:b2:b5:df:2f:5a:48:f9:f9:13:5a:a7:4a:69:a5:64:2a:5d:79:e9:c0:26:14:2b:b5:56:29:3a:9fSigner

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.sdata Size: 512B - Virtual size: 502B

.rsrc Size: 120KB - Virtual size: 119KB

.reloc Size: 512B - Virtual size: 12B

7b:f1:80:e7:ad:8d:d9:96:45:06:61:eb:19:ac:e1:30
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

fc:0c:78:ab:b2:b5:df:2f:5a:48:f9:f9:13:5a:a7:4a:69:a5:64:2a:5d:79:e9:c0:26:14:2b:b5:56:29:3a:9f
Signer

.text
Size: 1.6MB - Virtual size: 1.6MB

.sdata
Size: 512B - Virtual size: 502B

.rsrc
Size: 120KB - Virtual size: 119KB

.reloc
Size: 512B - Virtual size: 12B