7c780b3f07b9abfb0265210b87b059deecd8b050bd1c400417fffd3b93c5acb8

Sharing

Copy URL Twitter E-mail

General

Target

7c780b3f07b9abfb0265210b87b059deecd8b050bd1c400417fffd3b93c5acb8
Size

935KB
MD5

5eb94d8e1d3507ce5fd758e4e67f2b0e
SHA1

511e755a51a2740e24d597ff63dc9973a4661413
SHA256

7c780b3f07b9abfb0265210b87b059deecd8b050bd1c400417fffd3b93c5acb8
SHA512

9736deafcbe2bbe9a05492efdb6e6acdf79b6464f933d4ba64a115ccc0a963c0c8e04a834891ad57c8449420f368d02a30b52de983d71cc5736a61b68fc08952
SSDEEP

12288:F4dqVI2eN1g3CFI42tmaLTgliJI2PXFFMYDFfARLsWjHZMcEK1:+dqu2+12TgdIFFMK+hMcp1

Score

1^/10

Malware Config

Signatures

Files

7c780b3f07b9abfb0265210b87b059deecd8b050bd1c400417fffd3b93c5acb8
.dll windows:6 windows x64 arch:x64

ea52db21b723cb30498a030c40aabeee

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:01:94:cd:1e:31:42:20:51:35:d1:c6:36:e4:e9:ba
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

18/10/2022, 00:00

Not After

15/10/2025, 23:59

Subject

CN=NVIDIA Corporation,OU=1-F,O=NVIDIA Corporation,L=Santa Clara,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

38:63:de:f8
Certificate

Issuer

CN=Entrust.net Certification Authority (2048),OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)+OU=(c) 1999 Entrust.net Limited,O=Entrust.net

Not Before

24/12/1999, 17:50

Not After

24/07/2029, 14:15

Subject

CN=Entrust.net Certification Authority (2048),OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)+OU=(c) 1999 Entrust.net Limited,O=Entrust.net

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

58:da:13:ff:00:00:00:00:51:ce:0d:f7
Certificate

Issuer

CN=Entrust.net Certification Authority (2048),OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)+OU=(c) 1999 Entrust.net Limited,O=Entrust.net

Not Before

22/07/2015, 19:02

Not After

22/06/2029, 19:32

Subject

CN=Entrust Timestamping CA - TS1,OU=See www.entrust.net/legal-terms+OU=(c) 2015 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

56:ab:95:75:28:9c:a5:9f:0e:17:d4:0b:ea:05:c3:1f
Certificate

Issuer

CN=Entrust Timestamping CA - TS1,OU=See www.entrust.net/legal-terms+OU=(c) 2015 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

Not Before

04/10/2022, 17:21

Not After

01/01/2029, 00:00

Subject

CN=Entrust Timestamp Authority - TSA1,O=Entrust\, Inc.,L=Ottawa,ST=Ontario,C=CA

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

33:00:00:01:08:e2:33:7a:56:70:40:c0:d5:00:00:00:00:01:08
Certificate

Issuer

CN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

14/09/2023, 19:14

Not After

04/09/2024, 19:14

Subject

CN=Microsoft Windows Hardware Compatibility Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0b:aa:c1:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

18/04/2012, 23:48

Not After

18/04/2027, 23:58

Subject

CN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:e0:57:a8:e6:3c:0e:08:48:a1:21:35:6c:e4:10:db:cc:e4:e5:2e:84:c8:6c:4b:2c:42:ea:bf:5d:d3:bb:81
Signer

Actual PE Digest

06:e0:57:a8:e6:3c:0e:08:48:a1:21:35:6c:e4:10:db:cc:e4:e5:2e:84:c8:6c:4b:2c:42:ea:bf:5d:d3:bb:81

Digest Algorithm

sha256

PE Digest Matches

true

06:e0:57:a8:e6:3c:0e:08:48:a1:21:35:6c:e4:10:db:cc:e4:e5:2e:84:c8:6c:4b:2c:42:ea:bf:5d:d3:bb:81
Signer

Actual PE Digest

06:e0:57:a8:e6:3c:0e:08:48:a1:21:35:6c:e4:10:db:cc:e4:e5:2e:84:c8:6c:4b:2c:42:ea:bf:5d:d3:bb:81

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

FindClose
CloseHandle
GetLastError
QueryPerformanceCounter
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetEnvironmentVariableA
GetCurrentProcess
GetCurrentProcessId
SwitchToThread
GetCurrentThreadId
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryA
FreeLibrary
GetProcAddress
GetModuleHandleExA
LoadLibraryExW
CreateFileW
SetLastError
GetModuleFileNameW
GetModuleHandleW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
GetSystemTimeAsFileTime
InitializeSListHead
RtlUnwindEx
InterlockedFlushSList
InitializeCriticalSectionAndSpinCount
EncodePointer
RaiseException
RtlPcToFileHeader
SetStdHandle
GetFileType
GetModuleHandleExW
ExitProcess
WideCharToMultiByte
LCMapStringW
GetStdHandle
WriteFile
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
GetFileSizeEx
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetStringTypeW
HeapSize
WriteConsoleW
GetSystemDirectoryW

advapi32

RegOpenKeyExW
RegGetValueW

Exports

Exports

nvmlComputeInstanceDestroy
nvmlComputeInstanceGetInfo
nvmlComputeInstanceGetInfo_v2
nvmlDeviceClearAccountingPids
nvmlDeviceClearCpuAffinity
nvmlDeviceClearEccErrorCounts
nvmlDeviceClearFieldValues
nvmlDeviceCreateGpuInstance
nvmlDeviceCreateGpuInstanceWithPlacement
nvmlDeviceDiscoverGpus
nvmlDeviceFreezeNvLinkUtilizationCounter
nvmlDeviceGetAPIRestriction
nvmlDeviceGetAccountingBufferSize
nvmlDeviceGetAccountingMode
nvmlDeviceGetAccountingPids
nvmlDeviceGetAccountingStats
nvmlDeviceGetActiveVgpus
nvmlDeviceGetAdaptiveClockInfoStatus
nvmlDeviceGetApplicationsClock
nvmlDeviceGetArchitecture
nvmlDeviceGetAttributes
nvmlDeviceGetAttributes_v2
nvmlDeviceGetAutoBoostedClocksEnabled
nvmlDeviceGetBAR1MemoryInfo
nvmlDeviceGetBoardId
nvmlDeviceGetBoardPartNumber
nvmlDeviceGetBrand
nvmlDeviceGetBridgeChipInfo
nvmlDeviceGetBusType
nvmlDeviceGetC2cModeInfoV
nvmlDeviceGetClkMonStatus
nvmlDeviceGetClock
nvmlDeviceGetClockInfo
nvmlDeviceGetComputeInstanceId
nvmlDeviceGetComputeMode
nvmlDeviceGetComputeRunningProcesses
nvmlDeviceGetComputeRunningProcesses_v2
nvmlDeviceGetComputeRunningProcesses_v3
nvmlDeviceGetConfComputeGpuAttestationReport
nvmlDeviceGetConfComputeGpuCertificate
nvmlDeviceGetConfComputeMemSizeInfo
nvmlDeviceGetConfComputeProtectedMemoryUsage
nvmlDeviceGetCount
nvmlDeviceGetCount_v2
nvmlDeviceGetCpuAffinity
nvmlDeviceGetCpuAffinityWithinScope
nvmlDeviceGetCreatableVgpus
nvmlDeviceGetCudaComputeCapability
nvmlDeviceGetCurrPcieLinkGeneration
nvmlDeviceGetCurrPcieLinkWidth
nvmlDeviceGetCurrentClocksEventReasons
nvmlDeviceGetCurrentClocksThrottleReasons
nvmlDeviceGetDecoderUtilization
nvmlDeviceGetDefaultApplicationsClock
nvmlDeviceGetDefaultEccMode
nvmlDeviceGetDetailedEccErrors
nvmlDeviceGetDeviceHandleFromMigDeviceHandle
nvmlDeviceGetDisplayActive
nvmlDeviceGetDisplayMode
nvmlDeviceGetDriverModel
nvmlDeviceGetDynamicPstatesInfo
nvmlDeviceGetEccMode
nvmlDeviceGetEncoderCapacity
nvmlDeviceGetEncoderSessions
nvmlDeviceGetEncoderStats
nvmlDeviceGetEncoderUtilization
nvmlDeviceGetEnforcedPowerLimit
nvmlDeviceGetFBCSessions
nvmlDeviceGetFBCStats
nvmlDeviceGetFanControlPolicy_v2
nvmlDeviceGetFanSpeed
nvmlDeviceGetFanSpeed_v2
nvmlDeviceGetFieldValues
nvmlDeviceGetGpcClkMinMaxVfOffset
nvmlDeviceGetGpcClkVfOffset
nvmlDeviceGetGpuFabricInfo
nvmlDeviceGetGpuInstanceById
nvmlDeviceGetGpuInstanceId
nvmlDeviceGetGpuInstancePossiblePlacements
nvmlDeviceGetGpuInstancePossiblePlacements_v2
nvmlDeviceGetGpuInstanceProfileInfo
nvmlDeviceGetGpuInstanceProfileInfoV
nvmlDeviceGetGpuInstanceRemainingCapacity
nvmlDeviceGetGpuInstances
nvmlDeviceGetGpuMaxPcieLinkGeneration
nvmlDeviceGetGpuOperationMode
nvmlDeviceGetGraphicsRunningProcesses
nvmlDeviceGetGraphicsRunningProcesses_v2
nvmlDeviceGetGraphicsRunningProcesses_v3
nvmlDeviceGetGridLicensableFeatures
nvmlDeviceGetGridLicensableFeatures_v2
nvmlDeviceGetGridLicensableFeatures_v3
nvmlDeviceGetGridLicensableFeatures_v4
nvmlDeviceGetGspFirmwareMode
nvmlDeviceGetGspFirmwareVersion
nvmlDeviceGetHandleByIndex
nvmlDeviceGetHandleByIndex_v2
nvmlDeviceGetHandleByPciBusId
nvmlDeviceGetHandleByPciBusId_v2
nvmlDeviceGetHandleBySerial
nvmlDeviceGetHandleByUUID
nvmlDeviceGetHostVgpuMode
nvmlDeviceGetIndex
nvmlDeviceGetInforomConfigurationChecksum
nvmlDeviceGetInforomImageVersion
nvmlDeviceGetInforomVersion
nvmlDeviceGetIrqNum
nvmlDeviceGetJpgUtilization
nvmlDeviceGetLastBBXFlushTime
nvmlDeviceGetMPSComputeRunningProcesses
nvmlDeviceGetMPSComputeRunningProcesses_v2
nvmlDeviceGetMPSComputeRunningProcesses_v3
nvmlDeviceGetMaxClockInfo
nvmlDeviceGetMaxCustomerBoostClock
nvmlDeviceGetMaxMigDeviceCount
nvmlDeviceGetMaxPcieLinkGeneration
nvmlDeviceGetMaxPcieLinkWidth
nvmlDeviceGetMemClkMinMaxVfOffset
nvmlDeviceGetMemClkVfOffset
nvmlDeviceGetMemoryAffinity
nvmlDeviceGetMemoryBusWidth
nvmlDeviceGetMemoryErrorCounter
nvmlDeviceGetMemoryInfo
nvmlDeviceGetMemoryInfo_v2
nvmlDeviceGetMigDeviceHandleByIndex
nvmlDeviceGetMigMode
nvmlDeviceGetMinMaxClockOfPState
nvmlDeviceGetMinMaxFanSpeed
nvmlDeviceGetMinorNumber
nvmlDeviceGetModuleId
nvmlDeviceGetMultiGpuBoard
nvmlDeviceGetName
nvmlDeviceGetNumFans
nvmlDeviceGetNumGpuCores
nvmlDeviceGetNvLinkCapability
nvmlDeviceGetNvLinkErrorCounter
nvmlDeviceGetNvLinkRemoteDeviceType
nvmlDeviceGetNvLinkRemotePciInfo
nvmlDeviceGetNvLinkRemotePciInfo_v2
nvmlDeviceGetNvLinkState
nvmlDeviceGetNvLinkUtilizationControl
nvmlDeviceGetNvLinkUtilizationCounter
nvmlDeviceGetNvLinkVersion
nvmlDeviceGetOfaUtilization
nvmlDeviceGetP2PStatus
nvmlDeviceGetPciInfo
nvmlDeviceGetPciInfo_v2
nvmlDeviceGetPciInfo_v3
nvmlDeviceGetPcieLinkMaxSpeed
nvmlDeviceGetPcieReplayCounter
nvmlDeviceGetPcieSpeed
nvmlDeviceGetPcieThroughput
nvmlDeviceGetPerformanceState
nvmlDeviceGetPersistenceMode
nvmlDeviceGetPgpuMetadataString
nvmlDeviceGetPowerManagementDefaultLimit
nvmlDeviceGetPowerManagementLimit
nvmlDeviceGetPowerManagementLimitConstraints
nvmlDeviceGetPowerManagementMode
nvmlDeviceGetPowerSource
nvmlDeviceGetPowerState
nvmlDeviceGetPowerUsage
nvmlDeviceGetProcessUtilization
nvmlDeviceGetRemappedRows
nvmlDeviceGetRetiredPages
nvmlDeviceGetRetiredPagesPendingStatus
nvmlDeviceGetRetiredPages_v2
nvmlDeviceGetRowRemapperHistogram
nvmlDeviceGetRunningProcessDetailList
nvmlDeviceGetSamples
nvmlDeviceGetSerial
nvmlDeviceGetSupportedClocksEventReasons
nvmlDeviceGetSupportedClocksThrottleReasons
nvmlDeviceGetSupportedEventTypes
nvmlDeviceGetSupportedGraphicsClocks
nvmlDeviceGetSupportedMemoryClocks
nvmlDeviceGetSupportedPerformanceStates
nvmlDeviceGetSupportedVgpus
nvmlDeviceGetTargetFanSpeed
nvmlDeviceGetTemperature
nvmlDeviceGetTemperatureThreshold
nvmlDeviceGetThermalSettings
nvmlDeviceGetTopologyCommonAncestor
nvmlDeviceGetTopologyNearestGpus
nvmlDeviceGetTotalEccErrors
nvmlDeviceGetTotalEnergyConsumption
nvmlDeviceGetUUID
nvmlDeviceGetUtilizationRates
nvmlDeviceGetVbiosVersion
nvmlDeviceGetVgpuCapabilities
nvmlDeviceGetVgpuMetadata
nvmlDeviceGetVgpuProcessUtilization
nvmlDeviceGetVgpuSchedulerCapabilities
nvmlDeviceGetVgpuSchedulerLog
nvmlDeviceGetVgpuSchedulerState
nvmlDeviceGetVgpuUtilization
nvmlDeviceGetViolationStatus
nvmlDeviceGetVirtualizationMode
nvmlDeviceIsMigDeviceHandle
nvmlDeviceModifyDrainState
nvmlDeviceOnSameBoard
nvmlDeviceQueryDrainState
nvmlDeviceRegisterEvents
nvmlDeviceRemoveGpu
nvmlDeviceRemoveGpu_v2
nvmlDeviceResetApplicationsClocks
nvmlDeviceResetGpuLockedClocks
nvmlDeviceResetMemoryLockedClocks
nvmlDeviceResetNvLinkErrorCounters
nvmlDeviceResetNvLinkUtilizationCounter
nvmlDeviceSetAPIRestriction
nvmlDeviceSetAccountingMode
nvmlDeviceSetApplicationsClocks
nvmlDeviceSetAutoBoostedClocksEnabled
nvmlDeviceSetComputeMode
nvmlDeviceSetConfComputeUnprotectedMemSize
nvmlDeviceSetCpuAffinity
nvmlDeviceSetDefaultAutoBoostedClocksEnabled
nvmlDeviceSetDefaultFanSpeed_v2
nvmlDeviceSetDriverModel
nvmlDeviceSetEccMode
nvmlDeviceSetFanControlPolicy
nvmlDeviceSetFanSpeed_v2
nvmlDeviceSetGpcClkVfOffset
nvmlDeviceSetGpuLockedClocks
nvmlDeviceSetGpuOperationMode
nvmlDeviceSetMemClkVfOffset
nvmlDeviceSetMemoryLockedClocks
nvmlDeviceSetMigMode
nvmlDeviceSetNvLinkDeviceLowPowerThreshold
nvmlDeviceSetNvLinkUtilizationControl
nvmlDeviceSetPersistenceMode
nvmlDeviceSetPowerManagementLimit
nvmlDeviceSetPowerManagementLimit_v2
nvmlDeviceSetTemperatureThreshold
nvmlDeviceSetVgpuSchedulerState
nvmlDeviceSetVirtualizationMode
nvmlDeviceValidateInforom
nvmlErrorString
nvmlEventSetCreate
nvmlEventSetFree
nvmlEventSetWait
nvmlEventSetWait_v2
nvmlGetBlacklistDeviceCount
nvmlGetBlacklistDeviceInfoByIndex
nvmlGetExcludedDeviceCount
nvmlGetExcludedDeviceInfoByIndex
nvmlGetVgpuCompatibility
nvmlGetVgpuDriverCapabilities
nvmlGetVgpuVersion
nvmlGpmMetricsGet
nvmlGpmMigSampleGet
nvmlGpmQueryDeviceSupport
nvmlGpmQueryIfStreamingEnabled
nvmlGpmSampleAlloc
nvmlGpmSampleFree
nvmlGpmSampleGet
nvmlGpmSetStreamingEnabled
nvmlGpuInstanceCreateComputeInstance
nvmlGpuInstanceCreateComputeInstanceWithPlacement
nvmlGpuInstanceDestroy
nvmlGpuInstanceGetComputeInstanceById
nvmlGpuInstanceGetComputeInstancePossiblePlacements
nvmlGpuInstanceGetComputeInstanceProfileInfo
nvmlGpuInstanceGetComputeInstanceProfileInfoV
nvmlGpuInstanceGetComputeInstanceRemainingCapacity
nvmlGpuInstanceGetComputeInstances
nvmlGpuInstanceGetInfo
nvmlInit
nvmlInitWithFlags
nvmlInit_v2
nvmlInternalGetExportTable
nvmlSetVgpuVersion
nvmlShutdown
nvmlSystemGetConfComputeCapabilities
nvmlSystemGetConfComputeGpusReadyState
nvmlSystemGetConfComputeState
nvmlSystemGetCudaDriverVersion
nvmlSystemGetCudaDriverVersion_v2
nvmlSystemGetDriverVersion
nvmlSystemGetHicVersion
nvmlSystemGetNVMLVersion
nvmlSystemGetNvlinkBwMode
nvmlSystemGetProcessName
nvmlSystemGetTopologyGpuSet
nvmlSystemSetConfComputeGpusReadyState
nvmlSystemSetNvlinkBwMode
nvmlUnitGetCount
nvmlUnitGetDevices
nvmlUnitGetFanSpeedInfo
nvmlUnitGetHandleByIndex
nvmlUnitGetLedState
nvmlUnitGetPsuInfo
nvmlUnitGetTemperature
nvmlUnitGetUnitInfo
nvmlUnitSetLedState
nvmlVgpuInstanceClearAccountingPids
nvmlVgpuInstanceGetAccountingMode
nvmlVgpuInstanceGetAccountingPids
nvmlVgpuInstanceGetAccountingStats
nvmlVgpuInstanceGetEccMode
nvmlVgpuInstanceGetEncoderCapacity
nvmlVgpuInstanceGetEncoderSessions
nvmlVgpuInstanceGetEncoderStats
nvmlVgpuInstanceGetFBCSessions
nvmlVgpuInstanceGetFBCStats
nvmlVgpuInstanceGetFbUsage
nvmlVgpuInstanceGetFrameRateLimit
nvmlVgpuInstanceGetGpuInstanceId
nvmlVgpuInstanceGetGpuPciId
nvmlVgpuInstanceGetLicenseInfo
nvmlVgpuInstanceGetLicenseInfo_v2
nvmlVgpuInstanceGetLicenseStatus
nvmlVgpuInstanceGetMdevUUID
nvmlVgpuInstanceGetMetadata
nvmlVgpuInstanceGetType
nvmlVgpuInstanceGetUUID
nvmlVgpuInstanceGetVmDriverVersion
nvmlVgpuInstanceGetVmID
nvmlVgpuInstanceSetEncoderCapacity
nvmlVgpuTypeGetCapabilities
nvmlVgpuTypeGetClass
nvmlVgpuTypeGetDeviceID
nvmlVgpuTypeGetFrameRateLimit
nvmlVgpuTypeGetFramebufferSize
nvmlVgpuTypeGetGpuInstanceProfileId
nvmlVgpuTypeGetLicense
nvmlVgpuTypeGetMaxInstances
nvmlVgpuTypeGetMaxInstancesPerVm
nvmlVgpuTypeGetName
nvmlVgpuTypeGetNumDisplayHeads
nvmlVgpuTypeGetResolution

Sections

.text
Size: 835KB - Virtual size: 834KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea52db21b723cb30498a030c40aabeee

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0d:01:94:cd:1e:31:42:20:51:35:d1:c6:36:e4:e9:baCertificate

Extended Key Usages

Key Usages

38:63:de:f8Certificate

Key Usages

58:da:13:ff:00:00:00:00:51:ce:0d:f7Certificate

Extended Key Usages

Key Usages

56:ab:95:75:28:9c:a5:9f:0e:17:d4:0b:ea:05:c3:1fCertificate

Extended Key Usages

Key Usages

33:00:00:01:08:e2:33:7a:56:70:40:c0:d5:00:00:00:00:01:08Certificate

Extended Key Usages

61:0b:aa:c1:00:00:00:00:00:09Certificate

Key Usages

06:e0:57:a8:e6:3c:0e:08:48:a1:21:35:6c:e4:10:db:cc:e4:e5:2e:84:c8:6c:4b:2c:42:ea:bf:5d:d3:bb:81Signer

06:e0:57:a8:e6:3c:0e:08:48:a1:21:35:6c:e4:10:db:cc:e4:e5:2e:84:c8:6c:4b:2c:42:ea:bf:5d:d3:bb:81Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

Exports

Exports

Sections

.text Size: 835KB - Virtual size: 834KB

.rdata Size: 66KB - Virtual size: 65KB

.data Size: 5KB - Virtual size: 10KB

.pdata Size: 5KB - Virtual size: 4KB

_RDATA Size: 512B - Virtual size: 244B

.rsrc Size: 1024B - Virtual size: 896B

.reloc Size: 2KB - Virtual size: 2KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0d:01:94:cd:1e:31:42:20:51:35:d1:c6:36:e4:e9:ba
Certificate

38:63:de:f8
Certificate

58:da:13:ff:00:00:00:00:51:ce:0d:f7
Certificate

56:ab:95:75:28:9c:a5:9f:0e:17:d4:0b:ea:05:c3:1f
Certificate

33:00:00:01:08:e2:33:7a:56:70:40:c0:d5:00:00:00:00:01:08
Certificate

61:0b:aa:c1:00:00:00:00:00:09
Certificate

06:e0:57:a8:e6:3c:0e:08:48:a1:21:35:6c:e4:10:db:cc:e4:e5:2e:84:c8:6c:4b:2c:42:ea:bf:5d:d3:bb:81
Signer

06:e0:57:a8:e6:3c:0e:08:48:a1:21:35:6c:e4:10:db:cc:e4:e5:2e:84:c8:6c:4b:2c:42:ea:bf:5d:d3:bb:81
Signer

.text
Size: 835KB - Virtual size: 834KB

.rdata
Size: 66KB - Virtual size: 65KB

.data
Size: 5KB - Virtual size: 10KB

.pdata
Size: 5KB - Virtual size: 4KB

_RDATA
Size: 512B - Virtual size: 244B

.rsrc
Size: 1024B - Virtual size: 896B

.reloc
Size: 2KB - Virtual size: 2KB