a8c452946e291216b7bba41b8e7f9a3eb5ee9178c9559e4b5017ed832d90b94f

Target

a8c452946e291216b7bba41b8e7f9a3eb5ee9178c9559e4b5017ed832d90b94f
Size

1.5MB
MD5

7cdcc3f98b8ac064a1a0f0b978a125a1
SHA1

0403524c482fd0aaf166604d3d18cc80b308034b
SHA256

a8c452946e291216b7bba41b8e7f9a3eb5ee9178c9559e4b5017ed832d90b94f
SHA512

b89a50371281474d1a1013acec4d7cd14445579b1c37b5efab17ebdb6a27bcf1f42457ad9f63fedd4dc5adeeadb59816ccaff27f3538e438a21149abb342dfc5
SSDEEP

24576:QpTUqxDuI7WRoIlt2dTsJ63hHjGGYWYwMqP:ETxD/WRoIlIdTskNGIMqP

Score

1^/10

Malware Config

Signatures

Files

a8c452946e291216b7bba41b8e7f9a3eb5ee9178c9559e4b5017ed832d90b94f
.exe windows:4 windows x86 arch:x86

c7f42986e1f3c290387a2002e29b71a6

Code Sign

4f:0f:63:90:14:87:d8:9c:48:b6:3d:20:d8:d5:c8:95
Certificate

Issuer

CN=FFGDBATU

Not Before

13-02-2019 17:16

Not After

31-12-2039 23:59

Subject

CN=FFGDBATU

Extended Key Usages

ExtKeyUsageCodeSigning

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31-12-2015 00:00

Not After

09-07-2019 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

26:e9:f9:36:3f:69:a2:f4:24:6b:55:c1:dd:20:e7:c0:e9:6d:c1:6c
Signer

Actual PE Digest

26:e9:f9:36:3f:69:a2:f4:24:6b:55:c1:dd:20:e7:c0:e9:6d:c1:6c

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetModuleHandleA

user32

GetSubMenu
GetMenu
IsWindowEnabled
GetLastActivePopup
GetForegroundWindow
RegisterClassA
CreateWindowExW
GetClassInfoA
GetClassInfoW
GetDlgCtrlID
GetTopWindow
AdjustWindowRectEx
CharPrevA
DestroyWindow
IsCharAlphaNumericA
CharNextA
GetDC
ReleaseDC
MapDialogRect
MessageBoxW
ShowWindow
LoadMenuW
GetCursorPos
GetKeyState
EnableMenuItem
SetMenuDefaultItem
CheckMenuItem
TranslateAcceleratorW
BringWindowToTop
UpdateWindow
RegisterWindowMessageW
UnregisterClassW
SetWindowPos
GetWindowPlacement
IsIconic
DialogBoxIndirectParamW
EndDialog
GetDlgItem
CheckDlgButton
IsDlgButtonChecked
CharNextW
SetFocus
GetActiveWindow
SetForegroundWindow
GetWindowTextW
GetWindowTextLengthW
MapWindowPoints
FindWindowW
GetShellWindow
GetWindowThreadProcessId
GetWindow
MonitorFromWindow
GetMonitorInfoW
DrawIconEx
SetCursor
FindWindowExW
GetWindowDC
DispatchMessageW
PeekMessageW
IntersectRect
MonitorFromRect
SetClipboardViewer
ChangeClipboardChain
OpenClipboard
CloseClipboard
SetClipboardData
GetClipboardData
EmptyClipboard
TranslateMessage
GetMenuStringW
InflateRect
ModifyMenuW
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
GetMenuItemInfoW
GetMenuDefaultItem
DrawStateW
DestroyIcon
DestroyMenu
OpenInputDesktop
CloseDesktop
GetUserObjectInformationW
ExitWindowsEx
wsprintfW
CreatePopupMenu
DrawTextW
DefWindowProcW
DrawMenuBar
CharLowerW
SetWindowRgn
GetWindowRgn
MoveWindow
SetRectEmpty
LoadBitmapW
AttachThreadInput
GetClassNameW
EnumChildWindows
PostThreadMessageW
SetClassLongW
CharToOemW
CharUpperW
IsCharAlphaNumericW
DrawIcon
RegisterClassW
SetCapture
ReleaseCapture
BeginPaint
EndPaint
WindowFromPoint
GetIconInfo
wvsprintfW
GetQueueStatus
MsgWaitForMultipleObjects
GetProcessWindowStation
MessageBoxA
CopyRect
SystemParametersInfoW
SetWindowLongW
SetWindowTextW
KillTimer
SetTimer
GetDesktopWindow
IsWindowVisible
GetParent
GetWindowLongW
CreateMenu
IsRectEmpty
SetRect
FillRect
DrawFocusRect
GetSysColor
ScreenToClient
ClientToScreen
GetScrollPos
RedrawWindow
IsWindow
DrawEdge
LoadCursorW
InvalidateRect
PostMessageW
GetClientRect
GetSystemMetrics
LoadIconW
PtInRect
GetWindowRect
EnableWindow
GetMenuState
SendMessageW
LoadImageW
CloseWindow
LoadCursorFromFileA
GetWindowContextHelpId
GetSysColorBrush
GetMenuCheckMarkDimensions
CountClipboardFormats
LoadCursorFromFileW
PaintDesktop
IsGUIThread
CopyIcon
EndMenu
GetKeyboardLayout
GetFocus

gdi32

SetBkMode
SetViewportOrgEx
CreateFontIndirectW
SetBkColor
ExtTextOutW
GetStockObject
GetObjectW
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleDC
DeleteDC
DeleteObject
CreateCompatibleBitmap
SelectObject
CreateMetaFileA
BeginPath
GetDCBrushColor
GetTextAlign
GetLayout
SwapBuffers
GetMapMode
RealizePalette
GetPixelFormat
CreatePatternBrush
SetMetaRgn

advapi32

RegOpenKeyExA
RegQueryValueExW

Sections

.text
Size: 154KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 521KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Resubmissions

Sharing

General

Malware Config

Signatures

Files

c7f42986e1f3c290387a2002e29b71a6

Code Sign

4f:0f:63:90:14:87:d8:9c:48:b6:3d:20:d8:d5:c8:95Certificate

Extended Key Usages

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0bCertificate

Extended Key Usages

Key Usages

26:e9:f9:36:3f:69:a2:f4:24:6b:55:c1:dd:20:e7:c0:e9:6d:c1:6cSigner

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 154KB - Virtual size: 153KB

.rdata Size: 1.4MB - Virtual size: 1.4MB

.data Size: 5KB - Virtual size: 521KB

4f:0f:63:90:14:87:d8:9c:48:b6:3d:20:d8:d5:c8:95
Certificate

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

26:e9:f9:36:3f:69:a2:f4:24:6b:55:c1:dd:20:e7:c0:e9:6d:c1:6c
Signer

.text
Size: 154KB - Virtual size: 153KB

.rdata
Size: 1.4MB - Virtual size: 1.4MB

.data
Size: 5KB - Virtual size: 521KB