c127cf949deb3c2d9045196a2e01e35d

Sharing

Copy URL

Twitter E-mail

General

Target

c127cf949deb3c2d9045196a2e01e35d
Size

39KB
MD5

c127cf949deb3c2d9045196a2e01e35d
SHA1

6dc5b599501fbb201e1eddc4464270192ed8cdb0
SHA256

40fc25914557daa2525d20e553bfc73617030d1214589e9bffd79a23527d61d0
SHA512

adadb01b88c6f02858ea07978af764d7e976f1d43673b93aaae83bd389a39afc175b5bdab9529750b6b8d82e658aa64de4e5d8a9c1f752caaa6e4d8ade0bf04e
SSDEEP

384:bqyNhb22Uxq0l3CBiWCRB7F+NMKj7yhQ0/tpfwfvUdU:bqi1+s04IM/3D0/t9U

Score

1^/10

Malware Config

Signatures

Files

c127cf949deb3c2d9045196a2e01e35d
.exe windows:4 windows x86 arch:x86

28b8c00257f00fa4e8ef90f182042436

Code Sign

64:a7:fd:bf:6a:94:9c:4a:bb:60:59:5a:1c:1f:14:53
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA

Not Before

01-06-2011 05:41

Not After

31-12-2039 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA

54:6d:e9:65:38:95:f5:ab:4d:7f:bd:c3:b3:09:e2:69
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA

Not Before

01-06-2011 05:42

Not After

31-12-2039 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited

5b:b6:e7:93:c6:31:d6:ed:6f:b3:01:2c:83:ed:70:3c:c6:75:84:f0
Signer

Actual PE Digest

5b:b6:e7:93:c6:31:d6:ed:6f:b3:01:2c:83:ed:70:3c:c6:75:84:f0

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Process32Next
GetProcAddress
LoadLibraryA
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

28b8c00257f00fa4e8ef90f182042436

Code Sign

64:a7:fd:bf:6a:94:9c:4a:bb:60:59:5a:1c:1f:14:53Certificate

54:6d:e9:65:38:95:f5:ab:4d:7f:bd:c3:b3:09:e2:69Certificate

5b:b6:e7:93:c6:31:d6:ed:6f:b3:01:2c:83:ed:70:3c:c6:75:84:f0Signer

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 28KB - Virtual size: 26KB

64:a7:fd:bf:6a:94:9c:4a:bb:60:59:5a:1c:1f:14:53
Certificate

54:6d:e9:65:38:95:f5:ab:4d:7f:bd:c3:b3:09:e2:69
Certificate

5b:b6:e7:93:c6:31:d6:ed:6f:b3:01:2c:83:ed:70:3c:c6:75:84:f0
Signer

.text
Size: 28KB - Virtual size: 26KB