ImgBurn_65097[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

ImgBurn_65097.exe
Size

3.9MB
MD5

762539e0fef2fbc79a3ee87547e4ec8a
SHA1

f408daa249113f007cdc75e44f0c5cc5923014a8
SHA256

647e5e3e4839702e489390b301b7dc63ed3a1931da0882100b5afad16f3f5106
SHA512

4a559e19d511eb147639e72db6b68afb79a07d9f65fc0921fb6ddb4fe4f85d7ac940e92a7eac78b0942ba070b1955a4c76f8cfafd7a6850485bf7ecbbec9e4cd
SSDEEP

49152:2iFmLk32hySqLjGR9KbcmevhcMgJ2U3o5YTW07nS5tnF6h/j4tsdPAvh:2XW4hvmMgk75ODIRY2h

Score

1^/10

Malware Config

Signatures

Files

ImgBurn_65097.exe
.exe windows:5 windows x86

cd8e15ae010c7bb523f9c36de56b582e

Code Sign

4e:40:e4:37:54:ed:e6:8c:00:00:00:00:51:d3:94:7f
Certificate

Issuer

CN=Entrust Root Certification Authority - G2,OU=See www.entrust.net/legal-terms+OU=(c) 2009 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

Not Before

07/05/2021, 15:43

Not After

07/11/2030, 16:13

Subject

CN=Entrust Code Signing Root Certification Authority - CSBR1,O=Entrust\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

35:af:b7:7b:9d:34:1f:6a:fc:8f:84:46:ab:31:35:2b
Certificate

Issuer

CN=Entrust Code Signing Root Certification Authority - CSBR1,O=Entrust\, Inc.,C=US

Not Before

07/05/2021, 19:19

Not After

29/12/2040, 23:59

Subject

CN=Entrust Extended Validation Code Signing CA - EVCS2,O=Entrust\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

49:ce:c0:5a:d0:28:f4:e8:a4:d7:73:9f:2d:fa:4c:6c
Certificate

Issuer

CN=Entrust Extended Validation Code Signing CA - EVCS2,O=Entrust\, Inc.,C=US

Not Before

28/12/2022, 22:16

Not After

28/12/2023, 22:16

Subject

SERIALNUMBER=1242287,CN=Mack Digital Marking\, LLC,O=Mack Digital Marking\, LLC,L=Louisville,ST=Kentucky,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#13084b656e7475636b79,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f6:7d:74:c1:0a:73:cf:ed:fa:85:15:da:68:74:64:82:cd:2f:8c:f9:66:e9:99:aa:23:c9:0c:24:ce:10:07:2f
Signer

Actual PE Digest

f6:7d:74:c1:0a:73:cf:ed:fa:85:15:da:68:74:64:82:cd:2f:8c:f9:66:e9:99:aa:23:c9:0c:24:ce:10:07:2f

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

winmm

timeGetTime

comctl32

ImageList_GetDragImage
FlatSB_SetScrollPos
ImageList_GetIconSize
ImageList_Write
FlatSB_GetScrollInfo
_TrackMouseEvent
ImageList_DragShowNolock
ImageList_Remove
FlatSB_SetScrollProp
ImageList_Add
ImageList_GetBkColor
ImageList_DragMove
ImageList_SetIconSize
ImageList_DragEnter
InitializeFlatSB
ImageList_Destroy
ImageList_SetBkColor
FlatSB_SetScrollInfo
ImageList_BeginDrag
FlatSB_GetScrollPos
ImageList_SetImageCount
ImageList_DragLeave
ImageList_GetImageCount
ImageList_Read
ImageList_Create
ImageList_DrawIndirect
ImageList_GetIcon
ImageList_EndDrag
ImageList_DrawEx
ImageList_Draw

shell32

Shell_NotifyIconW
SHGetFolderPathW
ShellExecuteW
ShellExecuteExW

user32

RemovePropW
GetClipboardData
ShowScrollBar
GetDCEx
EnumThreadWindows
GetCursorPos
MapVirtualKeyW
InflateRect
DestroyWindow
GetScrollPos
GetMenuStringW
SetCursorPos
GetWindowTextW
GetSystemMenu
FillRect
SystemParametersInfoW
DestroyCursor
GetKeyboardState
CallWindowProcW
UnregisterClassW
PeekMessageA
CheckMenuItem
GetSubMenu
IsWindowEnabled
SendMessageW
IsDialogMessageA
DrawTextExW
EmptyClipboard
GetMenu
GetForegroundWindow
DispatchMessageA
GetWindowLongW
KillTimer
GetMonitorInfoW
GetActiveWindow
DestroyMenu
EnableMenuItem
ShowWindow
SetActiveWindow
RegisterWindowMessageW
CharLowerW
InvalidateRect
GetParent
GetMenuItemID
RedrawWindow
SwitchToThisWindow
DrawIcon
GetKeyboardLayoutList
IsWindowUnicode
HideCaret
SetParent
RegisterClassW
GetDC
IsRectEmpty
GetTopWindow
PostQuitMessage
SetWindowsHookExW
GetWindowDC
CharUpperW
ScrollWindow
WindowFromPoint
InsertMenuW
SetCursor
BeginPaint
OffsetRect
EnumDisplayMonitors
ClientToScreen
EnumClipboardFormats
AdjustWindowRectEx
GetKeyState
SetClassLongW
FrameRect
EndMenu
GetScrollRange
GetClassInfoExW
DefFrameProcW
DrawMenuBar
SetWindowPlacement
CallNextHookEx
SetTimer
LoadIconW
GetSysColor
GetLastActivePopup
DrawIconEx
DeleteMenu
LoadBitmapW
ScreenToClient
GetFocus
ShowCaret
GetScrollInfo
WaitMessage
GetSysColorBrush
UnhookWindowsHookEx
CreatePopupMenu
SetScrollRange
LoadCursorW
SetCapture
ReleaseCapture
IsIconic
PtInRect
DrawFrameControl
DefMDIChildProcW
GetMenuState
MsgWaitForMultipleObjects
EnumWindows
GetComboBoxInfo
RegisterClipboardFormatW
SetRect
CreateWindowExW
GetCursor
GetMenuItemRect
GetSystemMetrics
EnableWindow
GetWindowRect
EndPaint
GetDesktopWindow
IsZoomed
InsertMenuItemW
TranslateMessage
OpenClipboard
IsClipboardFormatAvailable
DrawEdge
TrackPopupMenu
MonitorFromWindow
SetMenu
GetPropW
MessageBeep
GetClassInfoW
SetFocus
GetKeyboardLayoutNameW
DispatchMessageW
GetClassLongW
CharLowerBuffW
SetWindowPos
IsChild
SendMessageA
GetCapture
MonitorFromPoint
SetScrollPos
CharNextW
FindWindowExW
GetIconInfo
PostMessageW
CreateMenu
SetWindowTextW
SetWindowRgn
IsDialogMessageW
DefWindowProcW
RemoveMenu
ReleaseDC
EnumChildWindows
SetClipboardData
GetWindow
GetWindowThreadProcessId
SetWindowLongW
IsWindow
EnableScrollBar
LoadStringW
UpdateWindow
GetKeyboardLayout
IsWindowVisible
DrawFocusRect
CharUpperBuffW
TranslateMDISysAccel
MapWindowPoints
LoadKeyboardLayoutW
SetMenuItemInfoW
SetScrollInfo
CopyImage
GetClientRect
ActivateKeyboardLayout
MsgWaitForMultipleObjectsEx
DestroyIcon
GetMessageExtraInfo
SetPropW
FindWindowW
DrawTextW
GetMenuItemCount
CreateIconIndirect
SetForegroundWindow
MessageBoxW
CloseClipboard
GetMenuItemInfoW
GetWindowPlacement
CreateIcon
GetDlgCtrlID
GetClassNameW
GetDlgItem
ShowOwnedPopups
GetKeyNameTextW
PeekMessageW
GetMessagePos

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

oleaut32

SysFreeString
SysReAllocStringLen
SafeArrayGetLBound
VariantChangeType
VariantInit
SysAllocStringLen
SafeArrayGetUBound
GetErrorInfo
SafeArrayPtrOfIndex
VariantCopy
VariantClear
SafeArrayCreate

advapi32

RegEnumValueW
RegQueryValueExW
RegQueryInfoKeyW
LookupPrivilegeValueW
RegEnumKeyExW
RegOpenKeyExW
OpenServiceW
QueryServiceStatus
AdjustTokenPrivileges
GetUserNameW
RegCloseKey
OpenSCManagerA
RegFlushKey
OpenProcessToken

netapi32

NetWkstaGetInfo
NetApiBufferFree

msvcrt

memcpy
memset

winhttp

WinHttpWriteData
WinHttpOpen
WinHttpReadData
WinHttpConnect
WinHttpSetCredentials
WinHttpSetStatusCallback
WinHttpAddRequestHeaders
WinHttpOpenRequest
WinHttpGetProxyForUrl
WinHttpReceiveResponse
WinHttpSetTimeouts
WinHttpQueryDataAvailable
WinHttpSetOption
WinHttpQueryOption
WinHttpQueryAuthSchemes
WinHttpSendRequest
WinHttpCloseHandle
WinHttpGetIEProxyConfigForCurrentUser
WinHttpQueryHeaders

kernel32

MultiByteToWideChar
HeapDestroy
lstrlenW
HeapAlloc
GetCurrentProcess
HeapFree
GetVersion
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
Sleep
GetLocaleInfoW
ResetEvent
GetFileAttributesW
GetStartupInfoW
LoadResource
DeleteCriticalSection
GetThreadPriority
QueryPerformanceCounter
LockResource
FindResourceW
MulDiv
LoadLibraryExW
TerminateThread
GetStdHandle
IsDebuggerPresent
QueryPerformanceFrequency
TlsSetValue
GetCurrentThread
HeapCreate
LoadLibraryA
MoveFileW
GetSystemInfo
VerifyVersionInfoW
GetFullPathNameW
SizeofResource
GetCommandLineW
RaiseException
SetEvent
VerSetConditionMask
FormatMessageW
GlobalAddAtomW
GetModuleHandleW
FileTimeToSystemTime
TlsGetValue
GetVersionExW
VirtualQuery
GlobalHandle
EnumResourceNamesW
WideCharToMultiByte
FreeResource
SetLastError
GlobalLock
GetExitCodeThread
LoadLibraryW
SetThreadPriority
GetCurrentThreadId
ResumeThread
SetErrorMode
CreateThread
UnhandledExceptionFilter
VirtualProtect
K32EnumProcessModulesEx
GetProcAddress
FindClose
VirtualQueryEx
CreateDirectoryW
GetModuleFileNameW
EnterCriticalSection
WaitForMultipleObjectsEx
IsValidLocale
SuspendThread
CompareStringW
ReadFile
GetTickCount
GetLocalTime
FindFirstFileW
LeaveCriticalSection
GetDriveTypeW
CreateMutexW
GlobalFindAtomW
GlobalAlloc
FindNextFileW
WaitForSingleObject
GetCPInfo
GetDiskFreeSpaceW
LCMapStringW
LocalFree
CreateFileW
EnumCalendarInfoW
ExitThread
VirtualAlloc
CloseHandle
GetTimeZoneInformation
GetDateFormatW
FreeLibrary
SetThreadLocale
ExitProcess
GlobalFree
InitializeCriticalSection
LocalAlloc
GetCurrentProcessId
GetCPInfoExW
SetFilePointer
GetFileSizeEx
VirtualFree
CreateEventW
WriteFile
SwitchToThread
DeviceIoControl
GlobalUnlock
GetLastError
CreateProcessW
GlobalSize
GlobalDeleteAtom
SetEndOfFile
GetACP
GetThreadLocale
RtlUnwind

ole32

CoInitialize
IsEqualGUID
OleUninitialize
OleInitialize
CoCreateInstance
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree

gdi32

SetWinMetaFileBits
SetRectRgn
GetEnhMetaFilePaletteEntries
GetBkMode
EnumFontFamiliesExW
SetBrushOrgEx
SetGraphicsMode
CreateRectRgn
DeleteObject
GetEnhMetaFileBits
SetTextColor
PatBlt
SetStretchBltMode
CombineRgn
GetRgnBox
SetDIBColorTable
GetTextExtentPoint32W
Polyline
SetDCPenColor
Rectangle
ExtFloodFill
DeleteEnhMetaFile
DeleteDC
SetPixel
StretchBlt
PolyBezierTo
SetWorldTransform
ExtCreateRegion
GetBitmapBits
GetViewportOrgEx
GetEnhMetaFileDescriptionW
Polygon
RectVisible
CreatePalette
GetClipBox
GetStretchBltMode
GetStockObject
CreateSolidBrush
CreatePenIndirect
SelectPalette
GetDIBColorTable
FrameRgn
GetNearestPaletteIndex
CreateRoundRectRgn
CreateBrushIndirect
LineTo
GetWindowOrgEx
CreateBitmap
GetEnhMetaFileHeader
UnrealizeObject
CreateHalftonePalette
GetSystemPaletteEntries
ExtTextOutW
MoveToEx
IntersectClipRect
SetViewportOrgEx
SetWindowOrgEx
SetROP2
PlayEnhMetaFile
GetCurrentObject
GetCurrentPositionEx
CopyEnhMetaFileW
GetTextExtentPointW
Arc
RoundRect
GetWinMetaFileBits
GdiFlush
RestoreDC
GetPaletteEntries
RealizePalette
Pie
GetTextMetricsW
Chord
BitBlt
SelectObject
SetDIBits
CreateFontIndirectW
GetBrushOrgEx
ExcludeClipRect
SaveDC
GetObjectW
GetTextColor
GetDeviceCaps
MaskBlt
SetEnhMetaFileBits
SetBkColor
GetPixel
SetBkMode
CreateCompatibleDC
ArcTo
PolyBezier
CreateDIBSection
AngleArc
Ellipse
GetDIBits
CreateDIBitmap
CreateCompatibleBitmap

Exports

Exports

TMethodImplementationIntercept
__dbk_fcall_wrapper
dbkFCallWrapperAddr

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 497KB - Virtual size: 497KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 105KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 149B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 88B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 260KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 438KB - Virtual size: 438KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd8e15ae010c7bb523f9c36de56b582e

Code Sign

4e:40:e4:37:54:ed:e6:8c:00:00:00:00:51:d3:94:7fCertificate

Extended Key Usages

Key Usages

35:af:b7:7b:9d:34:1f:6a:fc:8f:84:46:ab:31:35:2bCertificate

Extended Key Usages

Key Usages

49:ce:c0:5a:d0:28:f4:e8:a4:d7:73:9f:2d:fa:4c:6cCertificate

Extended Key Usages

Key Usages

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

f6:7d:74:c1:0a:73:cf:ed:fa:85:15:da:68:74:64:82:cd:2f:8c:f9:66:e9:99:aa:23:c9:0c:24:ce:10:07:2fSigner

Headers

File Characteristics

Imports

winmm

comctl32

shell32

user32

version

oleaut32

advapi32

netapi32

msvcrt

winhttp

kernel32

ole32

gdi32

Exports

Exports

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.itext Size: 9KB - Virtual size: 8KB

.data Size: 497KB - Virtual size: 497KB

.bss Size: - Virtual size: 105KB

.idata Size: 13KB - Virtual size: 13KB

.didata Size: 4KB - Virtual size: 3KB

.edata Size: 512B - Virtual size: 149B

.tls Size: - Virtual size: 88B

.rdata Size: 512B - Virtual size: 93B

.reloc Size: 260KB - Virtual size: 260KB

.rsrc Size: 438KB - Virtual size: 438KB

4e:40:e4:37:54:ed:e6:8c:00:00:00:00:51:d3:94:7f
Certificate

35:af:b7:7b:9d:34:1f:6a:fc:8f:84:46:ab:31:35:2b
Certificate

49:ce:c0:5a:d0:28:f4:e8:a4:d7:73:9f:2d:fa:4c:6c
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

f6:7d:74:c1:0a:73:cf:ed:fa:85:15:da:68:74:64:82:cd:2f:8c:f9:66:e9:99:aa:23:c9:0c:24:ce:10:07:2f
Signer

.text
Size: 2.7MB - Virtual size: 2.7MB

.itext
Size: 9KB - Virtual size: 8KB

.data
Size: 497KB - Virtual size: 497KB

.bss
Size: - Virtual size: 105KB

.idata
Size: 13KB - Virtual size: 13KB

.didata
Size: 4KB - Virtual size: 3KB

.edata
Size: 512B - Virtual size: 149B

.tls
Size: - Virtual size: 88B

.rdata
Size: 512B - Virtual size: 93B

.reloc
Size: 260KB - Virtual size: 260KB

.rsrc
Size: 438KB - Virtual size: 438KB