12507daa93f23e7e62a6bf028ae9d11b

Sharing

Copy URL Twitter E-mail

General

Target

12507daa93f23e7e62a6bf028ae9d11b
Size

410KB
MD5

12507daa93f23e7e62a6bf028ae9d11b
SHA1

6be397692936ae76dd2ac6163fb4fa0d17cc5d29
SHA256

daf447efb14510c702952d95869f8155a34e9b3c7206e879949a4e2d72d96eea
SHA512

92648d8ac5bcf8e0fd8c24d62814229599ef2d5b61f6085a69c0d21d53e5b71c6f21595f6c2c18efa1dc12ce772849b9ec58a931a6fcb4cd5b688e1580d5f226
SSDEEP

12288:gE0sroiRfzZUklgTXHNjjCzJBfrq4RBp9wLdZ:gEzroCfzZ1MVjCbfrqqwLdZ

Score

1^/10

Malware Config

Signatures

Files

12507daa93f23e7e62a6bf028ae9d11b
.exe windows:4 windows x86 arch:x86

04149708ff2abddf3104153da5aa59b0

Code Sign

0c:8e:f8:68:82:12:81:9e:4a:67:2b:28:75:18:bd:af
Certificate

Issuer

CN=cssqwazuqdp

Not Before

16/11/2011, 08:50

Not After

31/12/2039, 23:59

Subject

CN=Loren Com

e0:77:6f:3a:a0:15:97:3f:66:78:93:45:4c:b7:c7:4e:ac:f0:af:d7
Signer

Actual PE Digest

e0:77:6f:3a:a0:15:97:3f:66:78:93:45:4c:b7:c7:4e:ac:f0:af:d7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursorPos
GetCursor
SetCursor

ole32

OleSaveToStream
OleCreate

msvcrt

__setusermatherr
_initterm
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_adjust_fdiv

kernel32

GetStartupInfoA
ExitProcess
GetProcAddress
GetModuleHandleA
VirtualProtectEx
SetLocaleInfoA
EnterCriticalSection
LocalAlloc
GetUserDefaultLangID
GlobalMemoryStatus
GlobalReAlloc
HeapAlloc

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 272KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cgkiz
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

04149708ff2abddf3104153da5aa59b0

Code Sign

0c:8e:f8:68:82:12:81:9e:4a:67:2b:28:75:18:bd:afCertificate

e0:77:6f:3a:a0:15:97:3f:66:78:93:45:4c:b7:c7:4e:ac:f0:af:d7Signer

Headers

File Characteristics

Imports

user32

ole32

msvcrt

kernel32

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 1024B - Virtual size: 908B

.data Size: 272KB - Virtual size: 350KB

cgkiz Size: 121KB - Virtual size: 120KB

.rsrc Size: 5KB - Virtual size: 5KB

0c:8e:f8:68:82:12:81:9e:4a:67:2b:28:75:18:bd:af
Certificate

e0:77:6f:3a:a0:15:97:3f:66:78:93:45:4c:b7:c7:4e:ac:f0:af:d7
Signer

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 1024B - Virtual size: 908B

.data
Size: 272KB - Virtual size: 350KB

cgkiz
Size: 121KB - Virtual size: 120KB

.rsrc
Size: 5KB - Virtual size: 5KB