3fe4d9fa4f05d8d12333821a43f91e25bd32f07dc00983183289acffe6b2d229

Target

3fe4d9fa4f05d8d12333821a43f91e25bd32f07dc00983183289acffe6b2d229
Size

1.5MB
MD5

c13629942b30c7773b827380a7ffc045
SHA1

1c0127290effd2571710cef81b95bee140a99f7f
SHA256

3fe4d9fa4f05d8d12333821a43f91e25bd32f07dc00983183289acffe6b2d229
SHA512

6e188f90eaa811fca22a646c1ed17266647f931a05166218df002e5d51168f2eb1a5ce3a9881baf51126087a6793d8cc0d9c5b0a51296cc27257903e93eb6d11
SSDEEP

24576:9JSlxEJLbyy1BEEmuOdScyLmYBSnMVJKg3WtDI78Q:9JSlR8OdSPL4n6Isq07/

Score

1^/10

Malware Config

Signatures

Files

3fe4d9fa4f05d8d12333821a43f91e25bd32f07dc00983183289acffe6b2d229
.exe windows:4 windows x86 arch:x86

aadde2d1280078027f486916a44591b2

Code Sign

67:8d:b6:df:46:d9:2e:be:49:1c:ba:05:88:ca:b9:67
Certificate

Issuer

CN=WTJYUVUA

Not Before

22-01-2019 11:18

Not After

31-12-2039 23:59

Subject

CN=WTJYUVUA

Extended Key Usages

ExtKeyUsageCodeSigning

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31-12-2015 00:00

Not After

09-07-2019 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

46:d7:8f:37:ae:90:28:6a:eb:1f:0f:78:e5:93:bb:11:f3:17:fb:d3
Signer

Actual PE Digest

46:d7:8f:37:ae:90:28:6a:eb:1f:0f:78:e5:93:bb:11:f3:17:fb:d3

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
SetLastError
WideCharToMultiByte
DeleteCriticalSection
WaitForSingleObject
TerminateThread
GetVersion
GlobalAlloc
lstrcpyA
InitializeCriticalSection
CreateThread
GetProcAddress
EnterCriticalSection
Sleep
VirtualAlloc
GetModuleHandleA

user32

MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
CharNextA
GetSysColorBrush
LoadCursorA
GetDesktopWindow
GetClassNameA
DestroyMenu
LoadStringA
wvsprintfA
MapDialogRect
SetWindowContextHelpId
EndDialog
CreateDialogIndirectParamA
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
PostQuitMessage
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GrayStringA
CharUpperA
RegisterClipboardFormatA
PostThreadMessageA
MapWindowPoints
PeekMessageA
WinHelpA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
ScreenToClient
LoadIconA
IsIconic
DrawIcon
GetSystemMetrics
GetSystemMenu
AppendMenuA
KillTimer
SetTimer
PostMessageA
SendMessageA
GetWindowLongA
EnableWindow
GetParent
SetCapture
GetCapture
GetActiveWindow
RedrawWindow
InvalidateRect
GetClientRect
DrawFocusRect
DrawStateA
FrameRect
OffsetRect
InflateRect
PtInRect
CopyRect
SetCursor
GetSysColor
ReleaseCapture
LoadImageA
DestroyCursor
GetDC
ReleaseDC
FillRect
SetFocus
IsWindow
ModifyMenuA
ShowCaret
ExcludeUpdateRgn
HideCaret
IsWindowUnicode
UnregisterClassA
DefDlgProcA

gdi32

DeleteObject
CreateDIBSection
BitBlt
SetPixel
FillRgn
LineTo
MoveToEx
ExtCreatePen
GetDIBits
RealizePalette
GetStockObject
SelectPalette
GetDeviceCaps
CreateRectRgn
CreateDCA
SaveDC
CombineRgn
RestoreDC
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
SetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetClipBox
SetWindowExtEx
IntersectClipRect
DeleteDC
StretchDIBits
GetViewportExtEx
GetWindowExtEx
PtVisible
ExtTextOutA
Escape
RectVisible
GetMapMode
DPtoLP
GetBkColor
LPtoDP
GetTextColor
CreateDIBitmap
CreateFontA
SetTextAlign
GetPixel
TextOutW
StrokeAndFillPath
CreateHatchBrush
SetBkMode
CreatePen
GetTextExtentPoint32A
BeginPath
EndPath
StrokePath
GetCharWidthA
GetCurrentObject
CreateFontIndirectA
TextOutA
PatBlt
GetObjectA
CreateCompatibleBitmap
SetBkColor
SetTextColor
CreateBitmap
SetStretchBltMode
StretchBlt
CreateCompatibleDC
SelectObject
SelectClipRgn
CreateSolidBrush
CreatePolygonRgn
GetTextExtentPointA
SetMapMode
ExtTextOutW
CreateMetaFileA

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

advapi32

RegOpenKeyExW
RegQueryValueExW

shell32

SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA
DragFinish
SHGetFileInfoA
DragQueryFileA

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
OleFlushClipboard
OleIsCurrentClipboard

comctl32

ImageList_Destroy

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 613KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Resubmissions

Sharing

General

Malware Config

Signatures

Files

aadde2d1280078027f486916a44591b2

Code Sign

67:8d:b6:df:46:d9:2e:be:49:1c:ba:05:88:ca:b9:67Certificate

Extended Key Usages

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0bCertificate

Extended Key Usages

Key Usages

46:d7:8f:37:ae:90:28:6a:eb:1f:0f:78:e5:93:bb:11:f3:17:fb:d3Signer

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 57KB - Virtual size: 613KB

67:8d:b6:df:46:d9:2e:be:49:1c:ba:05:88:ca:b9:67
Certificate

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

46:d7:8f:37:ae:90:28:6a:eb:1f:0f:78:e5:93:bb:11:f3:17:fb:d3
Signer

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 57KB - Virtual size: 613KB