08533427dbd792d697b82c61058f8946

Sharing

Copy URL Twitter E-mail

General

Target

08533427dbd792d697b82c61058f8946
Size

3.1MB
MD5

08533427dbd792d697b82c61058f8946
SHA1

4c12addde9a545c8ccbb1b756ced8a2b48dc0530
SHA256

4c0bb91abbc31167d612a3564716cdbc14675d441d4211754983724555ca5e62
SHA512

27262885c9502f5f47021c007c870a5934c949db2fccf28873d71e08bb4afceeaf20fda3190a72dd0d1b02c93af2bdf6f96ffe1ff46257d8c82fcc7d629c48e2
SSDEEP

49152:B1LHB/Z1A81oKYJIpwzcGRXCbTPO++cXrsOZOQpgZv/M9kRSbfy4xwrMCdjym8:fB3A890IpwzrRXCfuukRh4xwrMCRo

Score

1^/10

Malware Config

Signatures

Files

08533427dbd792d697b82c61058f8946
.exe windows:5 windows x86 arch:x86

f32e18e4446ba79dae0c9c185d3d583d

Code Sign

02:48:73:50:c1:ff:bf:80:4c:0d:a2:13:50:c6:e0:c8
Certificate

Issuer

CN=UsualsPCAPByte,1.2.840.113549.1.9.1=#0c1677656240757375616c7370636170627974652e636f6d

Not Before

01/01/2020, 00:00

Not After

01/01/2021, 23:59

Subject

CN=UsualsPCAPByte,1.2.840.113549.1.9.1=#0c1677656240757375616c7370636170627974652e636f6d

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

Issuer

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2014, 00:00

Not After

22/10/2024, 00:00

Subject

CN=DigiCert Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/11/2006, 00:00

Not After

10/11/2021, 00:00

Subject

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidLocale
LCMapStringW
GetTimeFormatW
GetDateFormatW
GetACP
GetModuleFileNameA
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
VirtualQuery
EnumSystemLocalesW
GetConsoleMode
HeapQueryInformation
FreeLibraryAndExitThread
ExitThread
CreateThread
GetCommandLineA
GetModuleHandleExW
ExitProcess
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwind
OutputDebugStringW
GetStringTypeW
GetTimeZoneInformation
VirtualAlloc
GetConsoleCP
ReadConsoleW
SetFilePointerEx
FindFirstFileExA
FindFirstFileExW
FindNextFileA
FindNextFileW
IsValidCodePage
GetOEMCP
GetCPInfo
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
SetConsoleCtrlHandler
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
LocalUnlock
LocalLock
GetUserDefaultLCID
ReplaceFileW
GetDiskFreeSpaceW
FindResourceExW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
GetTickCount
GetTempPathW
GetTempFileNameW
SystemTimeToTzSpecificLocalTime
SetFileTime
SetFileAttributesW
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
SetErrorMode
VirtualProtect
GetStringTypeExW
MoveFileW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
GetThreadLocale
SystemTimeToFileTime
FileTimeToSystemTime
GlobalGetAtomNameW
GetFileSize
GetFileAttributesW
CreateFileW
VerifyVersionInfoW
VerSetConditionMask
DeleteFileW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
GetCurrentProcessId
GlobalAddAtomW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
SuspendThread
SetThreadPriority
CreateEventW
WaitForSingleObject
SetEvent
FreeResource
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalSize
LoadLibraryA
GetModuleHandleW
GetModuleHandleA
SetLastError
OutputDebugStringA
lstrcpyW
CompareStringA
WideCharToMultiByte
MultiByteToWideChar
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GlobalLock
GlobalAlloc
LoadLibraryExW
GetVersionExW
GetCurrentThreadId
GetCurrentThread
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
HeapFree
RemoveDirectoryA
GetLongPathNameA
GetCPInfoExA
EnumResourceNamesA
CreateMemoryResourceNotification
WaitCommEvent
HeapUnlock
GetExitCodeProcess
GetAtomNameW
EnumResourceLanguagesW
CopyFileExA
GetProcAddress
BindIoCompletionCallback
LoadLibraryW
GetModuleFileNameW
FreeLibrary
SetCommMask
GetTempFileNameA
GetEnvironmentStringsW
FindNextVolumeMountPointA
DebugActiveProcess
CloseHandle
GetLastError
Sleep
FindResourceW
LoadResource
LockResource
SizeofResource
GetCommandLineW
ResumeThread
GetSystemTimes
GetCurrentConsoleFontEx
EnumResourceTypesExA
CreateWaitableTimerExW
GetSystemInfo
WriteConsoleW

user32

CopyImage
LoadCursorW
WindowFromPoint
ClientToScreen
ReleaseCapture
SetCapture
WaitMessage
IsDialogMessageW
SetWindowTextW
ScrollWindowEx
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
UnhookWindowsHookEx
GetWindow
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
PtInRect
EqualRect
CopyRect
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
UpdateWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxW
SetCursor
ShowOwnedPopups
SystemParametersInfoW
DeleteMenu
RealChildWindowFromPoint
DrawFocusRect
FlashWindow
GetUpdateRgn
OemToCharBuffW
RegisterWindowMessageW
CallNextHookEx
GetCursorPos
ValidateRect
GetKeyState
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetDesktopWindow
GetWindowLongW
SetActiveWindow
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
IsWindow
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
SetTimer
KillTimer
InvalidateRect
DrawTextExW
GrayStringW
TabbedTextOutW
GetDC
GetWindowDC
ReleaseDC
IntersectRect
SetLayeredWindowAttributes
SetRectEmpty
EnumDisplayMonitors
SetParent
MonitorFromPoint
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DestroyIcon
LoadImageW
TrackMouseEvent
IsZoomed
CharUpperW
GetAsyncKeyState
LoadMenuW
GetSystemMenu
MessageBeep
NotifyWinEvent
SetCursorPos
SetRect
UnionRect
BringWindowToTop
CreatePopupMenu
LockWindowUpdate
DestroyMenu
BroadcastSystemMessageW
DrawTextW
GetOpenClipboardWindow
GetWindowWord
ScreenToClient
SetWindowsHookExW
CharToOemBuffW
EnumPropsExW
GetParent
IsGUIThread
SendMessageTimeoutA
CharUpperBuffA
EnumWindowStationsW
GetPhysicalCursorPos
MessageBoxExA
FindWindowW
SetWindowPos
EnableWindow
UnregisterClassW
PostMessageW
PostQuitMessage
SendMessageW
DrawEdge
DrawFrameControl
IsWindowVisible
GetFocus
GetSystemMetrics
DrawStateW
SetWindowRgn
RedrawWindow
GetClientRect
GetWindowRect
MapWindowPoints
GetSysColor
GetSysColorBrush
FillRect
InflateRect
OffsetRect
IsRectEmpty
DrawIconEx
GetMenuStringW
CreateAcceleratorTableW
CopyAcceleratorTableW
GetKeyNameTextW
SubtractRect
RegisterClipboardFormatW
CharUpperBuffW
UpdateLayeredWindow
FrameRect
IsClipboardFormatAvailable
PostThreadMessageW
GetNextDlgGroupItem
IsCharLowerW
MapVirtualKeyExW
MonitorFromRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SendNotifyMessageW
InSendMessage
GetComboBoxInfo
CreateMenu
WindowFromDC
DestroyCursor
EnumChildWindows
GetWindowRgn
DrawIcon
GetTabbedTextExtentW
HideCaret
InvertRect
GetDCEx
MapVirtualKeyW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
MapDialogRect
GetDialogBaseUnits
SendDlgItemMessageA
GetUpdateRect
SetClassLongW
DestroyAcceleratorTable
ModifyMenuW
SetMenuDefaultItem
GetMenuDefaultItem
GetMenuItemInfoW
EnableScrollBar
GetDoubleClickTime
GetIconInfo
CopyIcon

gdi32

Escape
ExcludeClipRect
GetClipBox
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
StartDocW
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
TextOutW
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
CreatePatternBrush
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectW
GetMapMode
SetRectRgn
DPtoLP
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetDIBits
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
GetRgnBox
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetCurrentObject
CreateFontW
GetCharWidthW
StretchDIBits
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
CloseMetaFile
CreateMetaFileW
DeleteMetaFile
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextFaceW
CreatePen
CreateDIBPatternBrushPt
CreateCompatibleDC
BitBlt
DeleteObject
GetObjectW
SetTextColor
SetBkColor
CreateBitmap
CreateDCW
CopyMetaFileW
GetTextMetricsW
Polyline
Polygon
CreatePolygonRgn
ExtTextOutW
PatBlt
GetTextExtentPoint32W
GetTextColor
GetBkColor
Ellipse
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
CombineRgn
DeleteDC
SetDCPenColor
LPtoDP
OffsetWindowOrgEx
GetDeviceCaps
GetCharWidth32W

msimg32

TransparentBlt
AlphaBlend

winspool.drv

GetJobW
ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
SetKernelObjectSecurity
RegQueryInfoKeyA
ReadEventLogW
CreatePrivateObjectSecurityWithMultipleInheritance
AccessCheckByTypeResultListAndAuditAlarmByHandleA
SetFileSecurityW
RegDeleteKeyValueA
GetTokenInformation
CreatePrivateObjectSecurityEx
ReportEventA
RegDeleteKeyExW
FileEncryptionStatusW
CloseEncryptedFileRaw
SetPrivateObjectSecurityEx
RegQueryInfoKeyW
RegCreateKeyTransactedA
EventAccessQuery
BuildTrusteeWithNameW
GetFileSecurityW

shell32

DragFinish
CommandLineToArgvW
ord74
SHCreateItemInKnownFolder
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
SHAddToRecentDocs
SHAppBarMessage
ExtractIconW
SHGetFileInfoW
DragQueryFileW
ShellExecuteW
ShellExecuteExW
SHPathPrepareForWriteW

shlwapi

PathIsUNCW
PathStripToRootW
AssocQueryKeyW
SHDeleteKeyA
PathRemoveFileSpecW
PathAppendW
PathFileExistsW
PathFindOnPathA
ord225
PathIsSameRootW
StrToIntW
PathFindExtensionW
PathFindFileNameW
PathRemoveExtensionW
PathSkipRootA
StrFormatKBSizeW
ord462

uxtheme

GetWindowTheme
GetThemeSysColor
IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeText
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
GetThemePartSize

ole32

OleTranslateAccelerator
IsAccelerator
OleRegGetMiscStatus
OleRegEnumVerbs
CreateGenericComposite
CreateItemMoniker
WriteClassStm
OleCreate
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateLinkToFile
OleCreateFromFile
OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleGetIconOfClass
GetHGlobalFromILockBytes
OleRun
PropVariantCopy
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitializeEx
CreateILockBytesOnHGlobal
CreateFileMoniker
StgIsStorageFile
StgOpenStorageOnILockBytes
StgOpenStorage
StgCreateDocfile
OleLockRunning
OleSetMenuDescriptor
RevokeDragDrop
RegisterDragDrop
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CLSIDFromString
CoDisconnectObject
StringFromGUID2
CreateStreamOnHGlobal
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
WriteClassStg
ReadClassStg
CreateBindCtx
CoTreatAsClass
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
CoCreateGuid
CoUninitialize
CoCreateInstance
CoInitialize
CoFreeLibrary
OleSetClipboard
HBITMAP_UserSize
CreateDataAdviseHolder
CreateOleAdviseHolder
GetRunningObjectTable
OleIsRunning
CoGetMalloc
OleQueryLinkFromData
OleQueryCreateFromData
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoGetClassObject
CoRegisterClassObject
CoRevokeClassObject
CoRegisterMessageFilter
CLSIDFromProgID
StgCreateDocfileOnILockBytes
CoLockObjectExternal

oleaut32

SysFreeString
SysStringByteLen
SysAllocStringByteLen
SysAllocStringLen
VariantInit
VariantClear
VarDecFromStr
VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SysAllocString
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayRedim
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysReAllocStringLen
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SafeArrayUnaccessData
VariantChangeType
SysStringLen

oledlg

OleUIBusyW

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits

wtsapi32

WTSOpenServerA
WTSEnumerateProcessesW
WTSSetUserConfigW
WTSSetUserConfigA
WTSEnumerateSessionsW
WTSVirtualChannelClose
WTSRegisterSessionNotification
WTSEnumerateSessionsA
WTSTerminateProcess
WTSFreeMemory

winmm

mciGetYieldProc
midiInPrepareHeader
PlaySoundW
waveInGetID

psapi

QueryWorkingSetEx
EnumProcesses
GetModuleBaseNameA
GetDeviceDriverBaseNameA
GetModuleBaseNameW
GetDeviceDriverBaseNameW
QueryWorkingSet
GetMappedFileNameW

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 468KB - Virtual size: 468KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 281KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f32e18e4446ba79dae0c9c185d3d583d

Code Sign

02:48:73:50:c1:ff:bf:80:4c:0d:a2:13:50:c6:e0:c8Certificate

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66Certificate

Extended Key Usages

Key Usages

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1bCertificate

Extended Key Usages

Key Usages

Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

wtsapi32

winmm

psapi

oleacc

imm32

Sections

.text Size: 2.1MB - Virtual size: 2.1MB

.rdata Size: 468KB - Virtual size: 468KB

.data Size: 30KB - Virtual size: 58KB

.gfids Size: 138KB - Virtual size: 138KB

.giats Size: 512B - Virtual size: 28B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 281KB - Virtual size: 281KB

.reloc Size: 167KB - Virtual size: 167KB

02:48:73:50:c1:ff:bf:80:4c:0d:a2:13:50:c6:e0:c8
Certificate

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

.text
Size: 2.1MB - Virtual size: 2.1MB

.rdata
Size: 468KB - Virtual size: 468KB

.data
Size: 30KB - Virtual size: 58KB

.gfids
Size: 138KB - Virtual size: 138KB

.giats
Size: 512B - Virtual size: 28B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 281KB - Virtual size: 281KB

.reloc
Size: 167KB - Virtual size: 167KB