ad08db47103ac361b24b311eecb00e548f0db8a96aa8745d266b86c601fbd3cc

Sharing

Copy URL Twitter E-mail

General

Target

ad08db47103ac361b24b311eecb00e548f0db8a96aa8745d266b86c601fbd3cc
Size

10.6MB
MD5

77bd617d8dd5d0ce573b2d0b544071a1
SHA1

1591ca018534ad4eb571007fb034194666218af3
SHA256

ad08db47103ac361b24b311eecb00e548f0db8a96aa8745d266b86c601fbd3cc
SHA512

18d5f34301020484fea97edabe6725025cd35ae20a0c0bd064811ef4761a5fc3a9f51101e5f4b370e29ceeb4009c72a2ac7e30e11c1618d6a5243397b86a4fb5
SSDEEP

196608:aLrDLS9EK4pZKkPjk91z3EHP4GbCmsX+L0XIwI2OkzaP:aLrq9ETZKyA9RmP4GblsqAI2OX

Score

1^/10

Malware Config

Signatures

Files

ad08db47103ac361b24b311eecb00e548f0db8a96aa8745d266b86c601fbd3cc
.exe windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Code Sign

01
Certificate

Issuer

CN=Driver Information Technology Co.\, Ltd.,C=CN

Not Before

20/05/2023, 11:58

Not After

19/05/2024, 11:58

Subject

CN=Driver Information Technology Co.\, Ltd.,C=CN

01
Certificate

Issuer

CN=Driver Information Technology Co.\, Ltd.,C=CN

Not Before

20/05/2023, 11:58

Not After

19/05/2024, 11:58

Subject

CN=Driver Information Technology Co.\, Ltd.,C=CN

bd:17:df:40:66:91:6d:ea:49:20:9e:17:be:42:f1:24:2a:fa:db:c9:ea:92:13:54:f6:09:4a:3c:16:f4:74:53
Signer

Actual PE Digest

bd:17:df:40:66:91:6d:ea:49:20:9e:17:be:42:f1:24:2a:fa:db:c9:ea:92:13:54:f6:09:4a:3c:16:f4:74:53

Digest Algorithm

sha256

PE Digest Matches

true

c9:45:35:52:ab:82:fa:b8:51:26:eb:7b:4a:dd:e4:bd:54:bf:03:05
Signer

Actual PE Digest

c9:45:35:52:ab:82:fa:b8:51:26:eb:7b:4a:dd:e4:bd:54:bf:03:05

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 2.6MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

grplnknv
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nrebcdlv
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

baa93d47220682c04d92f7797d9224ce

Code Sign

01Certificate

01Certificate

bd:17:df:40:66:91:6d:ea:49:20:9e:17:be:42:f1:24:2a:fa:db:c9:ea:92:13:54:f6:09:4a:3c:16:f4:74:53Signer

c9:45:35:52:ab:82:fa:b8:51:26:eb:7b:4a:dd:e4:bd:54:bf:03:05Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comctl32

Sections

Size: 2.6MB - Virtual size: 4.8MB

.rsrc Size: 6.3MB - Virtual size: 6.3MB

.idata Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 3.4MB

grplnknv Size: 1.7MB - Virtual size: 1.7MB

nrebcdlv Size: 512B - Virtual size: 4KB

01
Certificate

01
Certificate

bd:17:df:40:66:91:6d:ea:49:20:9e:17:be:42:f1:24:2a:fa:db:c9:ea:92:13:54:f6:09:4a:3c:16:f4:74:53
Signer

c9:45:35:52:ab:82:fa:b8:51:26:eb:7b:4a:dd:e4:bd:54:bf:03:05
Signer

.rsrc
Size: 6.3MB - Virtual size: 6.3MB

.idata
Size: 512B - Virtual size: 4KB

grplnknv
Size: 1.7MB - Virtual size: 1.7MB

nrebcdlv
Size: 512B - Virtual size: 4KB