2024-03-28_7a5cd26708cc22070d44f82938932539_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-28_7a5cd26708cc22070d44f82938932539_mafia
Size

5.0MB
MD5

7a5cd26708cc22070d44f82938932539
SHA1

386c885a9f6790e852a8271f87b8fd64c388a03f
SHA256

4e0608939c2a494a26b8bcd5be21618238940b2e44713eda9cdb62f7ff7c0e7c
SHA512

0e14ee6cb3f8620b16068cb416780997fe5867926b14636e0f0d73a79c1bb453b1294c4f7ec46ce8f5074b3f0c0704812be0ef431a7949c8cae05223bc3cc75b
SSDEEP

98304:RoyWgkxxGsfcna25y//x2lggt0yiirYy+wPw3XCnGXVuaRzwRAE9v4TqKZKaJ+Bg:Ltksz6GsDwPw3XCWwbVAqWeInhh

Score

1^/10

Malware Config

Signatures

Files

2024-03-28_7a5cd26708cc22070d44f82938932539_mafia
.exe windows:5 windows x86 arch:x86

d7d5b0dfa3d3260a3fddb1beea538ce3

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

20:9b:db:ea:f1:6c:06:f5:54:4a:b9:a1:bf:d3:2c:38
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

29/10/2013, 00:00

Not After

27/01/2017, 23:59

Subject

CN=Samsung Electronics CO.\, LTD.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Samsung Electronics CO.\, LTD.,L=Suwon,ST=Kyungki-Do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

5a:98:96:67:d4:7d:4b:7f:2b:e6:50:f7:9a:d0:6b:43:fd:a7:cf:d2
Signer

Actual PE Digest

5a:98:96:67:d4:7d:4b:7f:2b:e6:50:f7:9a:d0:6b:43:fd:a7:cf:d2

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Project\13_SideSync\SS_SVN\2_SRC\branch\SideSync_forWiFi\Release\SideSync.pdb

Imports

sidesyncusbchecker

?checkUSBConnectionAvailable@SideSyncUSBChecker@@QAE?AW4ApkInstallStatus@1@XZ
??1SideSyncUSBChecker@@QAE@XZ
??0SideSyncUSBChecker@@QAE@XZ

nativesidesyncframework

?setFileRecvFolder@SideSyncAPIManager@@QAEHV?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?sendCommonResponse@SideSyncAPIManager@@QAEHHHPAEH@Z
?cancelRecvFile@SideSyncAPIManager@@QAEHXZ
?sendFile@SideSyncAPIManager@@QAEHHV?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?sendCommonRequest@SideSyncAPIManager@@QAEHHHPAEH@Z
?cancelSendFile@SideSyncAPIManager@@QAEHXZ
?sendKeyboardEvent@SideSyncAPIManager@@QAEHHHHQAD@Z
?changeWorkingDevice@SideSyncAPIManager@@QAEH_N@Z
?sendMouseEvent@SideSyncAPIManager@@QAEHHHHH@Z
?setEventListener@SideSyncAPIManager@@QAEHPAVISideSyncEventListener@@@Z
?setLogListener@SideSyncAPIManager@@QAEHPAVILogEventListener@@@Z
??0SideSyncAPIManager@@QAE@XZ
?initialize@SideSyncAPIManager@@QAEH_N@Z
?destroy@SideSyncAPIManager@@QAEHXZ
??1SideSyncAPIManager@@QAE@XZ
?disconnect@SideSyncAPIManager@@QAEHXZ
?sendClipBoard@SideSyncAPIManager@@QAEHHPAEH@Z
?connect@SideSyncAPIManager@@QAEHV?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z

chord_native

ChordListenerSetOnDataReceivedCB
ChordListenerSetOnListeningCB
ChordPayloadCount
ChordPayloadFirst
ChordPayloadNext
ChordListenerSetOnLeaveCB
ChordListenerSetOnJoinCB
ChordListenerSetOnStoppedCB
ChordSetListener
ChordSetUdpDiscover
ChordSetNodeExpiry
ChordStart
ChordHeaderGetNodeName
ChordPayloadInit
ChordDataGet
ChordListenerInit
ChordInit
ChordHeaderGetType
ChordGetMyIP
ChordRelease
ChordJoinChannel
ChordStop
ChordSendData
ChordPayloadAppendBlob
ChordHeaderSetType
ChordHeaderSetChannel
ChordHeaderSetNodeName
ChordHeaderInit
ChordHeaderGetChannel

kernel32

TlsGetValue
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetSystemDirectoryW
GlobalFlags
GetFileAttributesExW
GetFileSize
GetFileSizeEx
GetFileTime
SetErrorMode
GetTempFileNameW
GetWindowsDirectoryW
GetNumberFormatW
GetProfileIntW
SearchPathW
VirtualProtect
FindResourceExW
GetCommandLineW
HeapSetInformation
GetStartupInfoW
EncodePointer
DecodePointer
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
CreateDirectoryW
GetTimeFormatW
GetDateFormatW
RtlUnwind
HeapReAlloc
ExitThread
SetStdHandle
GetFileType
ExitProcess
HeapQueryInformation
HeapSize
VirtualAlloc
GetSystemInfo
VirtualQuery
SetUnhandledExceptionFilter
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
QueryPerformanceCounter
UnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetStringTypeW
GetTimeZoneInformation
IsProcessorFeaturePresent
GetConsoleCP
GetConsoleMode
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetDriveTypeW
WriteConsoleW
SetEnvironmentVariableA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
CreateFileW
GetThreadLocale
GetPrivateProfileIntW
lstrcpyW
GetCurrentThread
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
ResumeThread
SetThreadPriority
FileTimeToLocalFileTime
FileTimeToSystemTime
ReleaseActCtx
CreateActCtxW
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
CompareStringW
lstrcmpW
ReleaseMutex
CreateMutexW
GetCurrentProcessId
ActivateActCtx
DeactivateActCtx
lstrcmpA
CopyFileW
GlobalSize
MulDiv
InterlockedExchange
InterlockedCompareExchange
LoadLibraryA
LCMapStringW
GetStringTypeExW
GetUserDefaultLCID
ExpandEnvironmentStringsW
GetExitCodeProcess
SetCurrentDirectoryW
GetCurrentDirectoryW
DeleteFileW
FindNextFileW
FindClose
FindFirstFileW
GetLongPathNameW
GetTempPathW
GetComputerNameExW
CreateEventW
SetThreadExecutionState
GetTickCount
GetComputerNameW
lstrlenA
GlobalFree
GetCurrentProcess
SetLastError
Process32NextW
TerminateProcess
OpenProcess
Process32FirstW
CreateToolhelp32Snapshot
GetSystemTime
ResetEvent
SetEvent
LoadLibraryW
GetExitCodeThread
CreateThread
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LoadLibraryExW
lstrcmpiW
GetProcAddress
FreeLibrary
LeaveCriticalSection
EnterCriticalSection
GetUserDefaultUILanguage
SuspendThread
GetFileAttributesW
WideCharToMultiByte
RaiseException
GetDiskFreeSpaceExW
InterlockedDecrement
InterlockedIncrement
Sleep
LocalFree
FormatMessageW
LocalAlloc
OutputDebugStringW
GetModuleFileNameW
CloseHandle
WaitForSingleObject
CreateProcessW
CreatePipe
ReadFile
PeekNamedPipe
GetModuleHandleW
lstrlenW
WritePrivateProfileStringW
GetLastError
MultiByteToWideChar
GetPrivateProfileStringW
FindResourceW
LoadResource
LockResource
SizeofResource
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalGetAtomNameW
GetFullPathNameW
GetVolumeInformationW
FreeResource
DuplicateHandle

user32

GetWindowRgn
DestroyCursor
SubtractRect
MapVirtualKeyExW
IsCharLowerW
GetDoubleClickTime
GetUpdateRect
IsClipboardFormatAvailable
CreateMenu
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
CharUpperBuffW
CopyIcon
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
FrameRect
LoadImageW
CopyImage
GetIconInfo
HideCaret
InvertRect
LockWindowUpdate
BringWindowToTop
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyW
ToUnicodeEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
SetClassLongW
DestroyAcceleratorTable
SetParent
DestroyIcon
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
WaitMessage
UnregisterClassW
GetMenuDefaultItem
SetMenuDefaultItem
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsZoomed
GetAsyncKeyState
NotifyWinEvent
MessageBeep
WindowFromPoint
SetWindowRgn
DeleteMenu
RealChildWindowFromPoint
SetLayeredWindowAttributes
GetSysColorBrush
CharUpperW
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
ValidateRect
IntersectRect
InflateRect
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
EnableMenuItem
CheckMenuItem
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
PeekMessageW
MonitorFromWindow
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
OpenClipboard
GetClipboardData
CloseClipboard
EmptyClipboard
SetClipboardData
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
CallWindowProcW
GetMenu
SetWindowPos
GetWindow
LoadMenuW
GetClassNameW
LoadBitmapW
FillRect
DrawStateW
GetWindowThreadProcessId
GetLastActivePopup
IsWindowEnabled
MessageBoxW
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
LoadStringW
EnumDisplayMonitors
GetMonitorInfoW
RegisterClipboardFormatW
CreatePopupMenu
SetForegroundWindow
AppendMenuW
GetSystemMenu
DispatchMessageW
TranslateMessage
GetMessageW
CharNextW
RegisterWindowMessageW
FindWindowW
SetWindowsHookExW
PostThreadMessageW
CallNextHookEx
UnhookWindowsHookEx
LoadIconW
GetCursorPos
OffsetRect
EqualRect
ReleaseDC
GetDC
SetRectEmpty
GetCapture
ClientToScreen
RedrawWindow
GetParent
IsWindow
ScreenToClient
PostMessageW
KillTimer
GetWindowRect
LoadCursorW
RegisterClassExW
CreateWindowExW
ShowWindow
RegisterDeviceNotificationW
DefWindowProcW
EnableWindow
SendMessageW
UpdateWindow
GetSystemMetrics
GetClientRect
SetRect
ShowCursor
SetActiveWindow
SetCursorPos
mouse_event
GetWindowLongW
SetWindowLongW
InvalidateRect
IsRectEmpty
PtInRect
SetCapture
ReleaseCapture
CopyRect
IsIconic
DrawIcon
IsWindowVisible
SetTimer
SetCursor
GetKeyNameTextW

gdi32

GetLayout
SetLayout
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
GetBoundsRect
MoveToEx
GetTextFaceW
SetPixelV
SetDIBColorTable
OffsetRgn
FrameRgn
SetTextAlign
SetPaletteEntries
ExtFloodFill
LineTo
IntersectClipRect
ExcludeClipRect
EnumFontFamiliesExW
Rectangle
SetPixel
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
GetStockObject
GetSystemPaletteEntries
RealizePalette
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
Polygon
Ellipse
Polyline
CreateEllipticRgn
CreatePolygonRgn
GetRgnBox
GetTextColor
GetBkColor
DeleteObject
CreateDCW
CopyMetaFileW
CreateFontIndirectW
GetObjectW
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreateRoundRectRgn
GetTextCharsetInfo
EnumFontFamiliesW
GetTextMetricsW
CreateDIBitmap
GetTextExtentPoint32W
DPtoLP
PatBlt
GetMapMode
CombineRgn
SetRectRgn
CreateRectRgnIndirect
CreateHatchBrush
CreatePen
GetObjectType
SelectPalette
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
StretchBlt

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

CryptAcquireContextW
CryptCreateHash
CryptReleaseContext
CryptHashData
CryptDestroyHash
CryptGetHashParam
RegDeleteKeyW
RegCloseKey
RegQueryInfoKeyW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegQueryValueExW
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW

shell32

SHCreateShellItemArrayFromDataObject
ShellExecuteW
SHGetSpecialFolderPathW
Shell_NotifyIconW
ShellExecuteExW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW
DragQueryFileW
DragFinish
SHAppBarMessage
SHGetFileInfoW
SHBrowseForFolderW

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

ord219
StrFormatByteSizeW
PathFindExtensionW
PathFindFileNameW
UrlUnescapeW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW

ole32

CoCreateInstance
OleInitialize
RegisterDragDrop
CoTaskMemFree
RevokeDragDrop
CoInitialize
CoUninitialize
CreateStreamOnHGlobal
CoTaskMemAlloc
CoTaskMemRealloc
CoInitializeEx
CoSetProxyBlanket
ReleaseStgMedium
OleDuplicateData
CoCreateGuid
CLSIDFromProgID
CLSIDFromString
OleUninitialize
CoFreeUnusedLibraries
CoLockObjectExternal
OleGetClipboard
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
CoRegisterMessageFilter
CoRevokeClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleFlushClipboard
OleIsCurrentClipboard

oleaut32

OleCreateFontIndirect
SysFreeString
VarUI4FromStr
SysAllocStringLen
SysAllocString
VariantClear
VariantChangeType
VariantInit
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
VarBstrFromDate

oledlg

OleUIBusyW

gdiplus

GdipBitmapUnlockBits
GdipCreateFromHDC
GdipDeleteGraphics
GdipCreateBitmapFromGraphics
GdipFree
GdipAlloc
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGraphicsClear
GdipDrawImageRect
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDeleteFont
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipDrawString
GdipDrawImageI
GdipCreateBitmapFromScan0
GdipSetStringFormatTrimming
GdipBitmapLockBits
GdipCreatePen1
GdipDeletePen
GdipDrawLine
GdipSetSolidFillColor
GdipGetSmoothingMode
GdipSetSmoothingMode
GdipFillEllipse
GdipSetInterpolationMode
GdipDrawImageRectI
GdipGetImageWidth
GdipGetImageHeight
GdipSetPixelOffsetMode
GdipDrawImageRectRect
GdipSetPenStartCap
GdipSetPenEndCap
GdipDrawLineI
GdipSetStringFormatHotkeyPrefix
GdipCreateTexture
GdipFillRectangleI
GdipDrawImagePointRectI
GdipTranslateTextureTransform
GdipDrawRectangle
GdipFillRectangle
GdipCreateBitmapFromStream
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdiplusShutdown
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipMeasureString

setupapi

SetupDiOpenDevRegKey
SetupDiGetClassDevsW
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status
SetupDiDestroyDeviceInfoList

iphlpapi

GetAdaptersInfo

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

wininet

InternetCanonicalizeUrlW
InternetSetOptionExW
HttpOpenRequestW
InternetConnectW
HttpSendRequestW
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallbackW
InternetOpenW
InternetGetLastResponseInfoW
InternetCloseHandle
HttpQueryInfoW
InternetQueryDataAvailable
InternetCrackUrlW

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Exports

Exports

??4SideSyncAPIManager@@QAEAAV0@ABV0@@Z
??4SideSyncUSBChecker@@QAEAAV0@ABV0@@Z

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 411KB - Virtual size: 410KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 241KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d7d5b0dfa3d3260a3fddb1beea538ce3

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

20:9b:db:ea:f1:6c:06:f5:54:4a:b9:a1:bf:d3:2c:38Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

5a:98:96:67:d4:7d:4b:7f:2b:e6:50:f7:9a:d0:6b:43:fd:a7:cf:d2Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

sidesyncusbchecker

nativesidesyncframework

chord_native

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

setupapi

iphlpapi

version

oleacc

wininet

imm32

winmm

Exports

Exports

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 411KB - Virtual size: 410KB

.data Size: 50KB - Virtual size: 81KB

.rsrc Size: 2.6MB - Virtual size: 2.6MB

.reloc Size: 241KB - Virtual size: 240KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

20:9b:db:ea:f1:6c:06:f5:54:4a:b9:a1:bf:d3:2c:38
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

5a:98:96:67:d4:7d:4b:7f:2b:e6:50:f7:9a:d0:6b:43:fd:a7:cf:d2
Signer

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 411KB - Virtual size: 410KB

.data
Size: 50KB - Virtual size: 81KB

.rsrc
Size: 2.6MB - Virtual size: 2.6MB

.reloc
Size: 241KB - Virtual size: 240KB