decfaad9816261d3eba76b67c8965ddce1fc2192e039b62e43b297b25650b4cc

resource	yara_rule
sample	themida

4f:dd:4e:33:5c:05:9f:8c:44:d2:86:a8:18:7e:ed:a4
Certificate

Issuer

CN=™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/

Not Before

05/01/2024, 19:50

Not After

06/01/2034, 19:50

Subject

CN=™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/™‰™‰™‰™‰™‰ AVG Technologies USA LLC ™‰™‰™‰™‰™‰/

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

8b:2e:62:3a:29:85:fd:ed:8b:17:c3:74:b8:6c:b3:d9:00:83:88:df:25:9a:65:40:28:bb:64:37:ab:01:36:bb
Signer

Actual PE Digest

8b:2e:62:3a:29:85:fd:ed:8b:17:c3:74:b8:6c:b3:d9:00:83:88:df:25:9a:65:40:28:bb:64:37:ab:01:36:bb

Digest Algorithm

sha256

PE Digest Matches

true

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

kernel32

GetModuleHandleA

GetSystemTimeAsFileTime

CreateEventA

GetModuleHandleA

TerminateProcess

GetCurrentProcess

CreateToolhelp32Snapshot

Thread32First

GetCurrentProcessId

GetCurrentThreadId

OpenThread

Thread32Next

CloseHandle

SuspendThread

ResumeThread

WriteProcessMemory

GetSystemInfo

VirtualAlloc

VirtualProtect

VirtualFree

GetProcessAffinityMask

SetProcessAffinityMask

GetCurrentThread

SetThreadAffinityMask

Sleep

LoadLibraryA

FreeLibrary

GetTickCount

SystemTimeToFileTime

FileTimeToSystemTime

GlobalFree

HeapAlloc

HeapFree

GetProcAddress

ExitProcess

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSection

DeleteCriticalSection

MultiByteToWideChar

GetModuleHandleW

LoadResource

FindResourceExW

FindResourceExA

WideCharToMultiByte

GetThreadLocale

GetUserDefaultLCID

GetSystemDefaultLCID

EnumResourceNamesA

EnumResourceNamesW

EnumResourceLanguagesA

EnumResourceLanguagesW

EnumResourceTypesA

EnumResourceTypesW

CreateFileW

LoadLibraryW

GetLastError

GetCommandLineA

GetCPInfo

InterlockedIncrement

InterlockedDecrement

GetACP

GetOEMCP

IsValidCodePage

TlsGetValue

TlsAlloc

TlsSetValue

TlsFree

SetLastError

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

RaiseException

LCMapStringA

LCMapStringW

SetHandleCount

GetStdHandle

GetFileType

GetStartupInfoA

GetModuleFileNameA

FreeEnvironmentStringsA

GetEnvironmentStrings

FreeEnvironmentStringsW

GetEnvironmentStringsW

HeapCreate

HeapDestroy

QueryPerformanceCounter

HeapReAlloc

GetStringTypeA

GetStringTypeW

GetLocaleInfoA

HeapSize

WriteFile

RtlUnwind

SetFilePointer

GetConsoleCP

GetConsoleMode

InitializeCriticalSectionAndSpinCount

SetStdHandle

WriteConsoleA

GetConsoleOutputCP

WriteConsoleW

CreateFileA

FlushFileBuffers

VirtualQuery

user32

GetClipboardData

advapi32

RegSetValueExA

shell32

SHGetKnownFolderPath

ole32

CoTaskMemFree

wininet

InternetReadFile

Size: - Virtual size: 414KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

Size: - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Size: - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Size: - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.imports
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.LABS+[^
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.themida
Size: - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.boot
Size: - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.LABS+[^
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.vmp°
Size: - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.vmp°
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.vmp°
Size: 6.1MB - Virtual size: 6.1MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

643742a9c032e6f352b79ebb8abbeecf

Code Sign

4f:dd:4e:33:5c:05:9f:8c:44:d2:86:a8:18:7e:ed:a4
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Extended Key Usages

Key Usages

8b:2e:62:3a:29:85:fd:ed:8b:17:c3:74:b8:6c:b3:d9:00:83:88:df:25:9a:65:40:28:bb:64:37:ab:01:36:bb
Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

wininet

Sections

Size: - Virtual size: 414KB

Size: - Virtual size: 103KB

Size: - Virtual size: 15KB

Size: - Virtual size: 1KB

Size: - Virtual size: 21KB

.imports
Size: - Virtual size: 4KB

.LABS+[^
Size: - Virtual size: 4KB

.themida
Size: - Virtual size: 3.9MB

.boot
Size: - Virtual size: 2.4MB

.LABS+[^
Size: - Virtual size: 1KB

.vmp°
Size: - Virtual size: 2.8MB

.vmp°
Size: 1024B - Virtual size: 888B

.vmp°
Size: 6.1MB - Virtual size: 6.1MB

.reloc
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 5KB - Virtual size: 4KB

Sharing

General

Malware Config

Signatures

Files

643742a9c032e6f352b79ebb8abbeecf

Code Sign

4f:dd:4e:33:5c:05:9f:8c:44:d2:86:a8:18:7e:ed:a4Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

8b:2e:62:3a:29:85:fd:ed:8b:17:c3:74:b8:6c:b3:d9:00:83:88:df:25:9a:65:40:28:bb:64:37:ab:01:36:bbSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

wininet

Sections

Size: - Virtual size: 414KB

Size: - Virtual size: 103KB

Size: - Virtual size: 15KB

Size: - Virtual size: 1KB

Size: - Virtual size: 21KB

.imports Size: - Virtual size: 4KB

.LABS+[^ Size: - Virtual size: 4KB

.themida Size: - Virtual size: 3.9MB

.boot Size: - Virtual size: 2.4MB

.LABS+[^ Size: - Virtual size: 1KB

.vmp° Size: - Virtual size: 2.8MB

.vmp° Size: 1024B - Virtual size: 888B

.vmp° Size: 6.1MB - Virtual size: 6.1MB

.reloc Size: 7KB - Virtual size: 6KB

.rsrc Size: 5KB - Virtual size: 4KB

4f:dd:4e:33:5c:05:9f:8c:44:d2:86:a8:18:7e:ed:a4
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

8b:2e:62:3a:29:85:fd:ed:8b:17:c3:74:b8:6c:b3:d9:00:83:88:df:25:9a:65:40:28:bb:64:37:ab:01:36:bb
Signer

.imports
Size: - Virtual size: 4KB

.LABS+[^
Size: - Virtual size: 4KB

.themida
Size: - Virtual size: 3.9MB

.boot
Size: - Virtual size: 2.4MB

.LABS+[^
Size: - Virtual size: 1KB

.vmp°
Size: - Virtual size: 2.8MB

.vmp°
Size: 1024B - Virtual size: 888B

.vmp°
Size: 6.1MB - Virtual size: 6.1MB

.reloc
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 5KB - Virtual size: 4KB