2932e8f29f1bf256b93354969edf2de2

Sharing

Copy URL

Twitter E-mail

General

Target

2932e8f29f1bf256b93354969edf2de2
Size

18KB
MD5

2932e8f29f1bf256b93354969edf2de2
SHA1

2bda639910791dde3593498cf3e1cf788ad1aeeb
SHA256

49a1d6cf3bfb125f103242e1db083d4f05880df25c669640fc74eb263dd9cf01
SHA512

85776d1a68d0a56acee4ebdae0b0a0354fed5a7d9ab4270eff35f76179f80a58b9a647dff0a09a9d7609afb4599ca6dcc93ca10e04cf9452e68b630b57b5bf11
SSDEEP

192:hwnHUnGUQCG5L/z6WkY4PmpxPMoYAS2A3URj2Hjy6LTs1kg+r7S:eHJURGdz6w4KxPMoYeASp6nrg+rG

Score

1^/10

Malware Config

Signatures

Files

2932e8f29f1bf256b93354969edf2de2
.exe windows:4 windows x86 arch:x86

844db254f32a9d78fbfff2591b7d4b58

Code Sign

4a:e1:51:8d:ec:16:7b:80:4b:a3:aa:af:7a:47:17:26
Certificate

Issuer

CN=Raawiwiwiri

Not Before

31/12/2010, 22:00

Not After

31/12/2039, 23:59

Subject

CN=Raawiwiwiri

fe:f7:cd:d4:68:ce:8b:1f:51:84:e9:cd:91:fc:b6:da:69:40:68:00
Signer

Actual PE Digest

fe:f7:cd:d4:68:ce:8b:1f:51:84:e9:cd:91:fc:b6:da:69:40:68:00

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetSystemDirectoryA
GetModuleHandleA
Sleep
GetLastError
GetCurrentProcess
GetCommandLineA
ExitProcess
LoadLibraryA

user32

KillTimer
LoadCursorA
LoadImageA
PostQuitMessage
RegisterClassExA
SetTimer
TranslateMessage
GetMessageA
EndPaint
DispatchMessageA
DefWindowProcA
CreateWindowExA
BeginPaint
GetClientRect

gdi32

CreateCompatibleDC
DeleteDC
GetObjectA
SelectObject
BitBlt

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 256B - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

844db254f32a9d78fbfff2591b7d4b58

Code Sign

4a:e1:51:8d:ec:16:7b:80:4b:a3:aa:af:7a:47:17:26Certificate

fe:f7:cd:d4:68:ce:8b:1f:51:84:e9:cd:91:fc:b6:da:69:40:68:00Signer

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 812B

.data Size: 512B - Virtual size: 332B

.rsrc Size: 13KB - Virtual size: 12KB

.reloc Size: 256B - Virtual size: 72KB

4a:e1:51:8d:ec:16:7b:80:4b:a3:aa:af:7a:47:17:26
Certificate

fe:f7:cd:d4:68:ce:8b:1f:51:84:e9:cd:91:fc:b6:da:69:40:68:00
Signer

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 812B

.data
Size: 512B - Virtual size: 332B

.rsrc
Size: 13KB - Virtual size: 12KB

.reloc
Size: 256B - Virtual size: 72KB