ae5ad6b1d33c32f60e8e10729cd3c693f8734aee766ea92b048837fb393ea845

Sharing

Copy URL Twitter E-mail

General

Target

ae5ad6b1d33c32f60e8e10729cd3c693f8734aee766ea92b048837fb393ea845
Size

3.6MB
MD5

d5d207810d336bf968d6433be395e42a
SHA1

1e0d77a1149fdffe277711f00538cbeed244d16b
SHA256

ae5ad6b1d33c32f60e8e10729cd3c693f8734aee766ea92b048837fb393ea845
SHA512

5605efb781bb8224c6f732e5b540847e416c9e79f0658b5d9f50cdc2979926fb334ce56dd01e7fbf1fde3ad91c14d77668de472073e1d564d22b09c4697844f4
SSDEEP

98304:WuKP/36ajxRM31MsjEC5ea+o+hMoHOHFWDIQIVLvBsh9I5:W/P/KnlebhMYsQIVLpsh9I5

Score

1^/10

Malware Config

Signatures

Files

ae5ad6b1d33c32f60e8e10729cd3c693f8734aee766ea92b048837fb393ea845
.exe windows:5 windows x86

cb19bf1e8fa2f29ba1add66f288941f6

Code Sign

0a:91:f3:b6:84:1e:24:78:6b:a2:68:d1:45:dc:a1:44
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

31/07/2020, 00:00

Not After

09/08/2023, 12:00

Subject

SERIALNUMBER=1027739867473,CN=Kaspersky Lab JSC,OU=Kaspersky Lab,O=Kaspersky Lab JSC,L=Moscow,C=RU,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13025255

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1a:cc:0c:ca:0c:2c:b1:40:61:6e:db:ac:81:b9:6e
Certificate

Issuer

CN=Kaspersky Lab,O=Kaspersky Lab,L=Moscow,C=RU

Not Before

25/08/2021, 14:06

Not After

25/08/2036, 14:06

Subject

CN=Kaspersky Lab,O=Kaspersky Lab,L=Moscow,C=RU

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e7:22:98:01:85:b9:b2:5d:bd:56:a8:9e:c9:62:c7:92:dd:86:55:25:fc:9b:33:1b:ca:cd:a6:59:c9:3a:96:b5
Signer

Actual PE Digest

e7:22:98:01:85:b9:b2:5d:bd:56:a8:9e:c9:62:c7:92:dd:86:55:25:fc:9b:33:1b:ca:cd:a6:59:c9:3a:96:b5

Digest Algorithm

sha256

PE Digest Matches

false

e7:22:98:01:85:b9:b2:5d:bd:56:a8:9e:c9:62:c7:92:dd:86:55:25:fc:9b:33:1b:ca:cd:a6:59:c9:3a:96:b5
Signer

Actual PE Digest

e7:22:98:01:85:b9:b2:5d:bd:56:a8:9e:c9:62:c7:92:dd:86:55:25:fc:9b:33:1b:ca:cd:a6:59:c9:3a:96:b5

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
FindFirstFileExA
GetCurrentDirectoryW
GetDriveTypeW
DeleteFileA
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
InterlockedDecrement
InterlockedIncrement
ExitProcess
ResetEvent
GetTickCount
SetEvent
Sleep
CreateThread
ActivateActCtx
GetProcAddress
GetModuleHandleA
LoadLibraryA
FreeResource
FindResourceA
GlobalFree
GlobalUnlock
GlobalLock
MultiByteToWideChar
MulDiv
lstrlenW
LocalFree
FormatMessageA
GlobalAlloc
GlobalSize
CopyFileA
lstrcmpW
LoadLibraryW
CompareStringA
FreeLibrary
GetVersionExA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
SetThreadPriority
ResumeThread
WaitForSingleObject
CreateEventA
GetModuleFileNameA
GetCurrentProcessId
WaitForMultipleObjects
CreateActCtxW
ReleaseActCtx
GetModuleFileNameW
GlobalReAlloc
lstrcmpA
GetModuleHandleW
InterlockedExchange
GetLocaleInfoA
GetSystemDefaultUILanguage
ConvertDefaultLocale
GetUserDefaultUILanguage
GetCurrentThread
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetUserDefaultLCID
GetFileTime
GetTempFileNameA
GetFullPathNameA
FileTimeToSystemTime
GlobalFlags
GetACP
GetThreadLocale
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
GetCPInfo
GetOEMCP
GetStringTypeExA
lstrcmpiA
FlushFileBuffers
LockFile
UnlockFile
GetFileInformationByHandle
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
FileTimeToLocalFileTime
GetFileAttributesExA
GetFileSizeEx
GetWindowsDirectoryA
GetNumberFormatA
GetTempPathA
SetErrorMode
InitializeCriticalSectionAndSpinCount
GetProfileIntA
SearchPathA
VirtualProtect
FindResourceExW
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
EncodePointer
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RtlUnwind
HeapReAlloc
RaiseException
VirtualAlloc
GetSystemInfo
VirtualQuery
ExitThread
HeapQueryInformation
HeapSize
SetStdHandle
GetFileType
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsValidCodePage
IsProcessorFeaturePresent
GetConsoleCP
GetConsoleMode
GetStdHandle
GetTimeZoneInformation
GetLocaleInfoW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
LCMapStringW
GetStringTypeW
CompareStringW
WriteConsoleW
EnumSystemLocalesA
IsValidLocale
GetProcessHeap
CreateFileW
SetEnvironmentVariableA
GetLocalTime
TerminateThread
GetExitCodeThread
EnumResourceLanguagesA
EnumResourceNamesA
EnumResourceTypesA
lstrcpynA
SleepEx
VerifyVersionInfoA
VerSetConditionMask
GetSystemDirectoryA
PeekNamedPipe
ExpandEnvironmentStringsA
GetLastError
DeactivateActCtx
SetLastError
SetFileTime
WriteFile
CreateDirectoryA
GetFileAttributesA
LocalFileTimeToFileTime
lstrcatA
lstrlenA
lstrcpyA
GetCurrentDirectoryA
SystemTimeToFileTime
ReadFile
CloseHandle
SetFilePointer
CreateFileA
FindResourceW
LoadResource
LockResource
SizeofResource
SetEndOfFile
WideCharToMultiByte

user32

SetRect
RealChildWindowFromPoint
GetSysColorBrush
IsRectEmpty
DrawIcon
SetTimer
KillTimer
UnregisterClassA
EnumDisplayMonitors
SetLayeredWindowAttributes
DeleteMenu
GetSystemMenu
SetParent
UnionRect
WindowFromPoint
CharUpperA
LoadAcceleratorsW
CopyAcceleratorTableA
CreateMenu
PostThreadMessageA
GetTabbedTextExtentW
GetMenuDefaultItem
GetAsyncKeyState
InvertRect
DrawFocusRect
HideCaret
EnableScrollBar
NotifyWinEvent
MessageBeep
GetIconInfo
CopyImage
GetNextDlgGroupItem
DrawIconEx
IsZoomed
DestroyAcceleratorTable
SetClassLongA
DrawStateA
DrawEdge
DrawFrameControl
ToAsciiEx
GetKeyboardLayout
GetKeyboardState
CreateAcceleratorTableA
LockWindowUpdate
GetDCEx
IsClipboardFormatAvailable
WaitMessage
OpenClipboard
SetClipboardData
CloseClipboard
EmptyClipboard
LoadImageW
IsCharLowerA
MapVirtualKeyExA
UpdateLayeredWindow
MonitorFromPoint
IsMenu
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
SetMenuDefaultItem
FrameRect
GetUpdateRect
RegisterClipboardFormatA
CopyIcon
CharUpperBuffA
GetDoubleClickTime
SubtractRect
MapDialogRect
GetWindowRgn
GetTabbedTextExtentA
GetKeyboardLayoutList
GetClipboardData
CreateIconIndirect
CreateIconFromResourceEx
SendMessageTimeoutA
GetCursor
ShowCaret
LookupIconIdFromDirectoryEx
LoadBitmapA
GetMenuStringW
SetWindowLongW
GetWindowLongW
IsWindowUnicode
mouse_event
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
DestroyMenu
ShowOwnedPopups
GetKeyNameTextA
SetCursor
LoadCursorW
DestroyCursor
SetCapture
InvalidateRect
ClientToScreen
IsIconic
SetCursorPos
ReleaseCapture
OffsetRect
InflateRect
GetWindowThreadProcessId
GetMessageA
TranslateMessage
ValidateRect
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MonitorFromWindow
GetMonitorInfoA
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
PostMessageA
MessageBoxA
CreateWindowExA
GetClassInfoExA
RegisterClassA
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
PtInRect
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
CallWindowProcA
SetWindowLongA
GetWindowTextLengthA
GetWindowTextA
GetScrollPos
SetScrollPos
GetWindow
SetFocus
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
RemoveMenu
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetParent
GetNextDlgTabItem
EndDialog
SendMessageA
EnableWindow
wsprintfA
InvalidateRgn
SetWindowContextHelpId
CharNextA
SystemParametersInfoA
LoadBitmapW
GetClassInfoA
DefWindowProcA
LoadCursorA
GetDesktopWindow
GetDC
GetWindowRect
SetWindowRgn
GetClientRect
ReleaseDC
IsWindow
IsWindowVisible
SetWindowPos
GetFocus
LoadIconW
GetMenu
RedrawWindow
UpdateWindow
LoadMenuW
GetSubMenu
EnableMenuItem
GetCursorPos
RegisterWindowMessageA
LoadImageA
PostQuitMessage
GetSystemMetrics
GetMenuItemInfoA
UnpackDDElParam
ReuseDDElParam
CheckMenuItem
LoadMenuA
DestroyIcon
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
IntersectRect
SetRectEmpty
BringWindowToTop
TranslateAcceleratorA
EndPaint
BeginPaint
GetWindowDC
ModifyMenuA
GrayStringA
MapVirtualKeyA

gdi32

GetObjectType
CreatePen
CreateSolidBrush
SetTextColor
CreateDCA
SetBkColor
PatBlt
SelectObject
CreateRectRgnIndirect
CreateBitmap
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
CreateFontIndirectA
GetTextExtentPoint32A
CreateRoundRectRgn
RoundRect
FillRgn
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
CopyMetaFileA
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
CreateHatchBrush
DPtoLP
GetViewportOrgEx
Rectangle
GetTextMetricsA
SetRectRgn
GetLayout
SetLayout
DeleteObject
SelectClipRgn
GetClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
CombineRgn
GetMapMode
CreateEllipticRgn
LPtoDP
Ellipse
CreateDIBSection
CreateDIBitmap
GetSystemPaletteEntries
RealizePalette
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
GetWindowOrgEx
GetTextExtentPoint32W
GetTextExtentPointA
GetTextFaceA
GetTextAlign
GetTextColor
GetStretchBltMode
GetROP2
GetPolyFillMode
GetBkMode
GetNearestColor
GetBkColor
StretchDIBits
CreateFontA
GetCharWidthA
GetTextCharsetInfo
GetObjectA
GetDeviceCaps
ScaleWindowExtEx
GetCurrentPositionEx
BeginPath
CloseFigure
EndPath
StrokeAndFillPath
FillPath
StrokePath
ExtTextOutW
GetBitmapBits
ExtCreateRegion
SetPixelV
SetPaletteEntries
ExtFloodFill
GetBoundsRect
FrameRgn
PtInRegion
EnumFontFamiliesExA
GetRgnBox
OffsetRgn
SetPixel
StretchBlt
GetDIBits
SetDIBColorTable
SelectPalette
GetStockObject
CreatePatternBrush
Polygon
Polyline
CreatePolygonRgn
GetCurrentObject
PolyBezierTo
ExtSelectClipRgn
DeleteDC
EnumFontFamiliesA

shell32

DragFinish
SHAddToRecentDocs
SHGetFileInfoA
SHGetDesktopFolder
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHAppBarMessage
ExtractIconExA
ShellExecuteA
DragQueryFileA

oleaut32

VariantChangeType
VariantInit
SysAllocStringLen
VariantClear
SysStringByteLen
VariantCopy
SafeArrayDestroy
SysAllocStringByteLen
SysFreeString
SystemTimeToVariantTime
VariantTimeToSystemTime
SysStringLen
VarBstrFromDate
LoadTypeLi
SysAllocString
OleLoadPicturePath
VarUdateFromDate
VariantChangeTypeEx
VarCmp
OleCreateFontIndirect

msimg32

TransparentBlt
AlphaBlend

comctl32

ImageList_DrawEx
ImageList_Destroy
ImageList_GetImageCount
ImageList_GetIconSize
InitCommonControlsEx
_TrackMouseEvent

shlwapi

PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathFindExtensionA
PathRemoveFileSpecW

oledlg

ord1
ord8

wldap32

ord211
ord143
ord60
ord50
ord26
ord30
ord200
ord32
ord35
ord79
ord33
ord301
ord27
ord41
ord46
ord22

ws2_32

recv
send
WSAIoctl
setsockopt
select
ntohl
htonl
gethostname
ioctlsocket
listen
WSAGetLastError
__WSAFDIsSet
accept
recvfrom
sendto
getaddrinfo
freeaddrinfo
connect
socket
closesocket
getpeername
getsockopt
htons
bind
ntohs
WSASetLastError
WSACleanup
WSAStartup
getsockname

crypt32

CertFreeCertificateContext

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

gdiplus

GdipBitmapLockBits
GdipCreateBitmapFromStream
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdipDrawImageI
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdiplusShutdown
GdipCreateBitmapFromScan0

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

comdlg32

GetFileTitleA

advapi32

CryptDestroyHash
CryptImportKey
CryptEncrypt
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegEnumValueA
RegEnumKeyExA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
CryptCreateHash
CryptHashData
CryptDestroyKey
CryptGetHashParam

ole32

OleIsCurrentClipboard
DoDragDrop
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
RegisterDragDrop
RevokeDragDrop
CoGetClassObject
CoRevokeClassObject
CoRegisterMessageFilter
CLSIDFromProgID
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CoInitializeEx
CreateStreamOnHGlobal
CoInitialize
CoUninitialize
CLSIDFromString
CoCreateInstance
CoCreateGuid
CoDisconnectObject
OleGetClipboard
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoLockObjectExternal
StgOpenStorageOnILockBytes
CoTaskMemFree
OleLockRunning
OleFlushClipboard

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 584KB - Virtual size: 583KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 317KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb19bf1e8fa2f29ba1add66f288941f6

Code Sign

0a:91:f3:b6:84:1e:24:78:6b:a2:68:d1:45:dc:a1:44Certificate

Extended Key Usages

Key Usages

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5cCertificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

1a:cc:0c:ca:0c:2c:b1:40:61:6e:db:ac:81:b9:6eCertificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

e7:22:98:01:85:b9:b2:5d:bd:56:a8:9e:c9:62:c7:92:dd:86:55:25:fc:9b:33:1b:ca:cd:a6:59:c9:3a:96:b5Signer

e7:22:98:01:85:b9:b2:5d:bd:56:a8:9e:c9:62:c7:92:dd:86:55:25:fc:9b:33:1b:ca:cd:a6:59:c9:3a:96:b5Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

oleaut32

msimg32

comctl32

shlwapi

oledlg

wldap32

ws2_32

crypt32

oleacc

gdiplus

imm32

winmm

winspool.drv

comdlg32

advapi32

ole32

Sections

.text Size: 2.5MB - Virtual size: 2.5MB

.rdata Size: 584KB - Virtual size: 583KB

.data Size: 49KB - Virtual size: 83KB

.rsrc Size: 121KB - Virtual size: 121KB

.reloc Size: 317KB - Virtual size: 317KB

0a:91:f3:b6:84:1e:24:78:6b:a2:68:d1:45:dc:a1:44
Certificate

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

1a:cc:0c:ca:0c:2c:b1:40:61:6e:db:ac:81:b9:6e
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

e7:22:98:01:85:b9:b2:5d:bd:56:a8:9e:c9:62:c7:92:dd:86:55:25:fc:9b:33:1b:ca:cd:a6:59:c9:3a:96:b5
Signer

e7:22:98:01:85:b9:b2:5d:bd:56:a8:9e:c9:62:c7:92:dd:86:55:25:fc:9b:33:1b:ca:cd:a6:59:c9:3a:96:b5
Signer

.text
Size: 2.5MB - Virtual size: 2.5MB

.rdata
Size: 584KB - Virtual size: 583KB

.data
Size: 49KB - Virtual size: 83KB

.rsrc
Size: 121KB - Virtual size: 121KB

.reloc
Size: 317KB - Virtual size: 317KB