7984a4ccb123afd4bc6b5c7d305c6193

Sharing

Copy URL Twitter E-mail

General

Target

7984a4ccb123afd4bc6b5c7d305c6193
Size

2.7MB
MD5

7984a4ccb123afd4bc6b5c7d305c6193
SHA1

46e92274cd81d07a83a4379eace77d2278f6063f
SHA256

d3a04fd910374a5d8b10261d7620cb1be4283f716e1196382f3868783276177b
SHA512

139dcafddaac931a1fd996e649a0b050b5893bca8204b556f5c976afcb93e02d6fc22e2bffcb298252482ef21df838ffa9b6c6f155b11fa931a4c54e2f79cd88
SSDEEP

49152:FEoebFpsJXc8maVSdm77sNYZGQZh9MU+p33MgXkDrLNRJDy6Xzxckx2V:OoebFp2tmmSoPiYEQZhOzp33MgXkDrLW

Score

1^/10

Malware Config

Signatures

Files

7984a4ccb123afd4bc6b5c7d305c6193
.exe windows:6 windows x86 arch:x86

3c086425ecbd5df5d3dd85503c4b6c8b

Code Sign

76:6a:78:bd:42:3c:be:aa:45:f3:14:13:98:95:bd:7b
Certificate

Issuer

CN=Artistic Act,1.2.840.113549.1.9.1=#0c136465764061727469737469636163742e636f6d

Not Before

15/01/2021, 21:00

Not After

16/02/2022, 21:00

Subject

CN=Artistic Act,1.2.840.113549.1.9.1=#0c136465764061727469737469636163742e636f6d

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1f:b3:1d:0f:55:f4:1f:47:a5:a0:5a:eb:b5:da:25:aa:44:2d:3b:dd
Signer

Actual PE Digest

1f:b3:1d:0f:55:f4:1f:47:a5:a0:5a:eb:b5:da:25:aa:44:2d:3b:dd

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount64
SystemTimeToTzSpecificLocalTime
GetEnvironmentStringsW
QueryPerformanceCounter
FileTimeToLocalFileTime
LoadLibraryExW
CloseHandle
GetModuleHandleA
GetTickCount
TlsAlloc
CompareStringA
GetFileSizeEx
WaitForMultipleObjects
SetLastError
QueryPerformanceFrequency
GetFullPathNameA
GlobalUnlock
GetCurrentDirectoryA
HeapFree
WriteFile
LCMapStringW
GetSystemTimeAsFileTime
UnlockFile
FindFirstFileA
EnumSystemLocalesW
SetStdHandle
WritePrivateProfileStringA
GetVersionExA
ReadFile
GetModuleHandleW
SetFilePointerEx
FileTimeToSystemTime
TlsSetValue
GetWindowsDirectoryA
GlobalGetAtomNameA
GlobalHandle
GetLocaleInfoW
SetFilePointer
LocalFree
LocalAlloc
FindResourceExW
GetStdHandle
GlobalAlloc
SetEvent
Sleep
LockResource
ExitThread
GetCurrentProcessId
CompareStringW
VirtualQuery
FormatMessageA
LeaveCriticalSection
GlobalReAlloc
ResumeThread
DuplicateHandle
GetCurrentThreadId
CreateFileA
CreateEventW
EncodePointer
ExitProcess
GetCurrentProcess
LoadResource
GetProfileIntA
OutputDebugStringA
VerSetConditionMask
FindFirstFileExA
GetTempFileNameA
SetUnhandledExceptionFilter
GetCurrentThread
FindClose
SetThreadPriority
MulDiv
GetACP
GetCommandLineW
LocalReAlloc
CreateThread
FreeLibraryAndExitThread
GetModuleFileNameA
GetSystemInfo
EnterCriticalSection
FindNextFileA
GetProcessHeap
OutputDebugStringW
FreeLibrary
TlsFree
FindResourceA
GetConsoleCP
GlobalDeleteAtom
GetPrivateProfileStringA
FindResourceW
TlsGetValue
GetFileType
ResetEvent
GlobalAddAtomA
GetPrivateProfileIntA
GetFileAttributesA
FreeResource
GetUserDefaultUILanguage
GetCPInfo
GetModuleHandleExW
GetConsoleMode
GetSystemDefaultUILanguage
FlushFileBuffers
InitializeSListHead
lstrcmpW
WriteConsoleW
DeleteFileA
LoadLibraryA
GlobalFree
GetSystemDirectoryW
LockFile
RtlUnwind
HeapAlloc
GetFileTime
DecodePointer
SizeofResource
GetProcAddress
SetEnvironmentVariableA
LoadLibraryW
GetFileSize
WideCharToMultiByte
InitializeCriticalSectionEx
GetModuleFileNameW
TerminateProcess
VirtualProtect
lstrcmpiA
GetStartupInfoW
WaitForSingleObject
FreeEnvironmentStringsW
SetErrorMode
GetLastError
VerifyVersionInfoA
GetStringTypeW
HeapReAlloc
DeleteCriticalSection
lstrcmpA
IsValidLocale
HeapQueryInformation
GlobalLock
GetTempPathA
lstrcpyA
GlobalSize
SwitchToThread
GetFileAttributesExA
RaiseException
InitializeCriticalSectionAndSpinCount
CopyFileA
GetVolumeInformationA
GlobalFindAtomA
MultiByteToWideChar
SetEndOfFile
GetOEMCP
InitializeCriticalSection
VirtualAlloc
HeapSize
IsProcessorFeaturePresent
IsDebuggerPresent
GlobalFlags
GetTimeZoneInformation
CreateFileW
SearchPathA
GetCommandLineA
GetUserDefaultLCID
WaitForSingleObjectEx
UnhandledExceptionFilter
IsValidCodePage

user32

DefMDIChildProcA
CreateWindowExA
SetCapture
ScreenToClient
EnableScrollBar
DeferWindowPos
CopyImage
GetWindowPlacement
SetScrollInfo
LoadCursorA
GetKeyboardLayout
GetParent
LoadMenuW
EnableMenuItem
DispatchMessageA
CheckMenuItem
SetForegroundWindow
SetCursor
EnumWindows
TranslateMDISysAccel
CloseClipboard
ReleaseDC
IntersectRect
SubtractRect
MapWindowPoints
GetComboBoxInfo
ValidateRect
BeginDeferWindowPos
GetSystemMenu
RealChildWindowFromPoint
IsDialogMessageA
DestroyWindow
SetScrollRange
IsCharLowerA
GetWindowThreadProcessId
IsMenu
RegisterWindowMessageA
ShowWindow
DrawTextExA
GetWindowLongA
DefWindowProcA
TrackMouseEvent
EnumDisplayMonitors
TabbedTextOutA
SystemParametersInfoA
GetMenuItemID
SetParent
MessageBeep
SendDlgItemMessageA
CreateAcceleratorTableA
SetRect
LockWindowUpdate
InsertMenuItemA
ShowScrollBar
UnpackDDElParam
GetSysColor
GetKeyNameTextA
ShowOwnedPopups
GetForegroundWindow
GetPropA
SetRectEmpty
GetWindowTextA
TranslateAcceleratorA
IsWindow
IsZoomed
GetMenuItemInfoA
UnregisterClassA
SetTimer
GetNextDlgTabItem
MoveWindow
GetClassNameA
GetScrollRange
GetWindowRect
AdjustWindowRectEx
IsWindowVisible
SetMenu
GetClassInfoExA
SetWindowPos
CallWindowProcA
LoadCursorW
CharUpperBuffA
SetMenuItemInfoA
GetSysColorBrush
LoadAcceleratorsA
MessageBoxW
GetMessageTime
SetWindowRgn
GetWindowRgn
TranslateMessage
CreateMenu
SetActiveWindow
MapDialogRect
SetPropA
GetMenuCheckMarkDimensions
InvertRect
GetWindow
GetMonitorInfoA
GetActiveWindow
GetNextDlgGroupItem
MonitorFromPoint
PtInRect
DrawFrameControl
SetClassLongA
MapVirtualKeyA
GetDlgItem
GetCursorPos
GetClassInfoA
CreateDialogIndirectParamA
RemoveMenu
FillRect
DrawMenuBar
DestroyMenu
GetCapture
KillTimer
GetFocus
GrayStringA
TrackPopupMenu
DestroyIcon
SendMessageA
DrawIconEx
InsertMenuA
GetKeyState
GetSubMenu
PostThreadMessageA
EndDeferWindowPos
LoadIconW
GetDC
EmptyClipboard
GetDlgCtrlID
ClientToScreen
ReuseDDElParam
IsChild
SetClipboardData
GetClientRect
LoadBitmapW
GetAsyncKeyState
GetMenuDefaultItem
UnionRect
SetScrollPos
GetMessageA
CopyIcon
SetCursorPos
ToAsciiEx
WinHelpA
LoadIconA
ScrollWindow
LoadAcceleratorsW
GetMenuStringA
OffsetRect
PeekMessageA
CharUpperA
GetMenu
GetMenuState
EndPaint
SetFocus
DeleteMenu
EqualRect
CheckDlgButton
CallNextHookEx
IsRectEmpty
GetScrollPos
GetScrollInfo
UpdateWindow
UpdateLayeredWindow
SetMenuDefaultItem
GetUpdateRect
ModifyMenuA
GetDoubleClickTime
AppendMenuA
GetDesktopWindow
LoadMenuA
PostQuitMessage
GetMenuItemCount
DrawIcon
WindowFromPoint
DrawEdge
RegisterClipboardFormatA
WaitMessage
MessageBoxA
MapVirtualKeyExA
HideCaret
SetLayeredWindowAttributes
GetWindowTextLengthA
LoadImageW
LoadImageA
DrawTextA
DestroyCursor
DestroyAcceleratorTable
DrawStateA
SetWindowTextA
GetIconInfo
GetLastActivePopup
IsWindowEnabled
GetMessagePos
IsIconic
RegisterClassA
GetClassLongA
NotifyWinEvent
GetTopWindow
GetKeyboardState
DefFrameProcA
GetSystemMetrics
MonitorFromWindow
UnhookWindowsHookEx
BringWindowToTop
FrameRect
CopyRect
OpenClipboard
IsClipboardFormatAvailable
SetWindowLongA
ReleaseCapture
GetWindowDC
EndDialog
EnableWindow
RedrawWindow
InvalidateRect
DrawFocusRect
BeginPaint
SetWindowPlacement
RemovePropA
PostMessageA
InflateRect
CreatePopupMenu
SetWindowsHookExA
CopyAcceleratorTableA
SetMenuItemBitmaps

gdi32

GetTextExtentPoint32A
SetRectRgn
GetTextMetricsA
SetTextAlign
CreateBitmap
GetViewportExtEx
SetROP2
ScaleViewportExtEx
DeleteObject
SetBkMode
FillRgn
RectVisible
PtInRegion
GetObjectType
CreateRectRgn
OffsetViewportOrgEx
SetPolyFillMode
GetDeviceCaps
TextOutA
CreatePatternBrush
ExtFloodFill
SetWindowOrgEx
SetViewportOrgEx
GetWindowExtEx
CreateFontIndirectA
SetMapMode
GetPaletteEntries
CreatePalette
GetLayout
CreateCompatibleDC
SelectPalette
DeleteDC
GetTextCharsetInfo
LPtoDP
CombineRgn
CreateRoundRectRgn
OffsetWindowOrgEx
PtVisible
GetObjectA
SetWindowExtEx
GetSystemPaletteEntries
SetTextColor
GetTextColor
GetWindowOrgEx
GetRgnBox
CreatePolygonRgn
CreateSolidBrush
Polyline
EnumFontFamiliesExA
LineTo
SetPixel
ScaleWindowExtEx
CreateDCA
FrameRgn
GetBkColor
CreateRectRgnIndirect
ExcludeClipRect
CreateDIBSection
SetPaletteEntries
CreatePen
CreateCompatibleBitmap
CreateEllipticRgn
SelectObject
ExtTextOutA
SaveDC
CreateDIBitmap
CreateHatchBrush
GetViewportOrgEx
GetTextFaceA
GetNearestPaletteIndex
DPtoLP
Escape
RoundRect
SetDIBColorTable
SetViewportExtEx
OffsetRgn
SetDIBitsToDevice
SelectClipRgn
GetBoundsRect
CopyMetaFileA
SetBkColor
GetStockObject
EnumFontFamiliesA
Rectangle
GetPixel
GetClipBox
PatBlt
ExtSelectClipRgn
SetLayout
Ellipse
RealizePalette
SetPixelV
BitBlt
StretchBlt
IntersectClipRect
Polygon
RestoreDC
MoveToEx

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteValueA
RegQueryValueExA
RegCloseKey
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegQueryValueA
RegSetValueExA

shell32

SHGetSpecialFolderLocation
SHBrowseForFolderA
ShellExecuteA
CommandLineToArgvW
SHGetFileInfoA
SHAppBarMessage
DragQueryFileA
SHGetPathFromIDListA
SHGetDesktopFolder
DragFinish

shlwapi

PathFindFileNameA
PathIsUNCA
PathStripToRootA
StrFormatKBSizeA
PathRemoveFileSpecW
PathFindExtensionA

uxtheme

GetWindowTheme
GetCurrentThemeName
IsAppThemed
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
GetThemeColor
OpenThemeData
GetThemeSysColor
DrawThemeText
DrawThemeBackground
DrawThemeParentBackground
CloseThemeData

ole32

CoCreateGuid
DoDragDrop
OleLockRunning
CoLockObjectExternal
CoTaskMemAlloc
CoDisconnectObject
OleGetClipboard
OleDestroyMenuDescriptor
ReleaseStgMedium
OleTranslateAccelerator
CoInitializeEx
CoInitialize
CoTaskMemFree
CoCreateInstance
RevokeDragDrop
CreateStreamOnHGlobal
RegisterDragDrop
CoUninitialize
OleDuplicateData
IsAccelerator
OleCreateMenuDescriptor

oleaut32

VarBstrFromDate
VariantCopy
SysAllocString
VariantTimeToSystemTime
SystemTimeToVariantTime
LoadTypeLi
SysAllocStringByteLen
VariantChangeType
VariantClear
VariantInit
SysStringLen
SysFreeString
SysAllocStringLen

gdiplus

GdipGetImageHeight
GdipBitmapUnlockBits
GdipAlloc
GdiplusShutdown
GdipCloneImage
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipGetImagePixelFormat
GdipBitmapLockBits
GdipDrawImageI
GdiplusStartup
GdipCreateBitmapFromScan0
GdipDeleteGraphics
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImageGraphicsContext
GdipSetInterpolationMode
GdipDisposeImage
GdipFree
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipDrawImageRectI

oleacc

CreateStdAccessibleObject
LresultFromObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 333KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 556KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c086425ecbd5df5d3dd85503c4b6c8b

Code Sign

76:6a:78:bd:42:3c:be:aa:45:f3:14:13:98:95:bd:7bCertificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

1f:b3:1d:0f:55:f4:1f:47:a5:a0:5a:eb:b5:da:25:aa:44:2d:3b:ddSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 333KB - Virtual size: 332KB

.data Size: 21KB - Virtual size: 38KB

.rsrc Size: 556KB - Virtual size: 556KB

.reloc Size: 140KB - Virtual size: 139KB

76:6a:78:bd:42:3c:be:aa:45:f3:14:13:98:95:bd:7b
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

1f:b3:1d:0f:55:f4:1f:47:a5:a0:5a:eb:b5:da:25:aa:44:2d:3b:dd
Signer

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 333KB - Virtual size: 332KB

.data
Size: 21KB - Virtual size: 38KB

.rsrc
Size: 556KB - Virtual size: 556KB

.reloc
Size: 140KB - Virtual size: 139KB