3bb00938e0d71b6bfadb6398e367d7f5

Sharing

Copy URL Twitter E-mail

General

Target

3bb00938e0d71b6bfadb6398e367d7f5
Size

353KB
MD5

3bb00938e0d71b6bfadb6398e367d7f5
SHA1

dc4e4e665977bbed871e21497bca3737275d520d
SHA256

55f32261c0b8019baf4075002fccbf4370e5fd96c0b52e8ea756a0446a7e4edf
SHA512

cfa5566c3e7d07c36eb105a6b8a7398f1bbcde5977335a26b60f32c1f0ed6a85e6cddae7595429493a3bf48369c01ed53a02375e2bcb619b949b51db3d588d99
SSDEEP

6144:sqzQ9SQr2I6jxZNp0H8vIz3YX5Sze2wpchpkUJ1HGBh4kHIR:ISQ6jJQTKk9h1HGAR

Score

1^/10

Malware Config

Signatures

Files

3bb00938e0d71b6bfadb6398e367d7f5
.exe windows:4 windows x86 arch:x86

4c03290f09e49ab4595996c19e1c6c08

Code Sign

53:a8:13:b0:88:80:82:ab:46:63:12:3b:1e:73:8b:38
Certificate

Issuer

CN=fbDs

Not Before

19/06/2012, 05:12

Not After

31/12/2039, 23:59

Subject

CN=fbDs

Extended Key Usages

ExtKeyUsageCodeSigning

68:8b:43:d9:aa:39:ee:94:61:d2:26:71:20:85:43:d1:84:09:b2:ec
Signer

Actual PE Digest

68:8b:43:d9:aa:39:ee:94:61:d2:26:71:20:85:43:d1:84:09:b2:ec

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
LoadLibraryA
GetCommandLineA
CloseHandle
GetWindowsDirectoryW
GetModuleHandleA
GetProcAddress
lstrcatW
CreateFileW
VirtualAllocEx

user32

LoadIconA
LoadCursorA

advapi32

RegCloseKey
RegOpenKeyW

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 303KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data13
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data12
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data11
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data10
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data9
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data8
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data7
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data6
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data5
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data4
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 212B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c03290f09e49ab4595996c19e1c6c08

Code Sign

53:a8:13:b0:88:80:82:ab:46:63:12:3b:1e:73:8b:38Certificate

Extended Key Usages

68:8b:43:d9:aa:39:ee:94:61:d2:26:71:20:85:43:d1:84:09:b2:ecSigner

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 42KB - Virtual size: 41KB

.data Size: 303KB - Virtual size: 302KB

.data13 Size: 512B - Virtual size: 100B

.data12 Size: 512B - Virtual size: 100B

.data11 Size: 512B - Virtual size: 100B

.data10 Size: 512B - Virtual size: 100B

.data9 Size: 512B - Virtual size: 100B

.data8 Size: 512B - Virtual size: 100B

.data7 Size: 512B - Virtual size: 100B

.data6 Size: 512B - Virtual size: 100B

.data5 Size: 512B - Virtual size: 100B

.data4 Size: 512B - Virtual size: 100B

.data3 Size: 512B - Virtual size: 100B

.data2 Size: 512B - Virtual size: 100B

.reloc Size: 512B - Virtual size: 212B

53:a8:13:b0:88:80:82:ab:46:63:12:3b:1e:73:8b:38
Certificate

68:8b:43:d9:aa:39:ee:94:61:d2:26:71:20:85:43:d1:84:09:b2:ec
Signer

.text
Size: 42KB - Virtual size: 41KB

.data
Size: 303KB - Virtual size: 302KB

.data13
Size: 512B - Virtual size: 100B

.data12
Size: 512B - Virtual size: 100B

.data11
Size: 512B - Virtual size: 100B

.data10
Size: 512B - Virtual size: 100B

.data9
Size: 512B - Virtual size: 100B

.data8
Size: 512B - Virtual size: 100B

.data7
Size: 512B - Virtual size: 100B

.data6
Size: 512B - Virtual size: 100B

.data5
Size: 512B - Virtual size: 100B

.data4
Size: 512B - Virtual size: 100B

.data3
Size: 512B - Virtual size: 100B

.data2
Size: 512B - Virtual size: 100B

.reloc
Size: 512B - Virtual size: 212B