8aa56dfc5a6b22cdb5eba5044982ba3c4f81facbe1a521609f05565f79620b40

Sharing

Copy URL Twitter E-mail

General

Target

8aa56dfc5a6b22cdb5eba5044982ba3c4f81facbe1a521609f05565f79620b40
Size

1.8MB
MD5

316c088874a5dfb8b8c1c4b259329257
SHA1

29ea1020dae9219be7f45a40f5e3a2743973fb26
SHA256

8aa56dfc5a6b22cdb5eba5044982ba3c4f81facbe1a521609f05565f79620b40
SHA512

b38a9872133f8323b6aeb08633a80defb2f87f5ef9510f2b090be9cabfb34f411e5677aff528c3d93588e3def80893006c41f8f2949380bb96c3209ebcc6463e
SSDEEP

24576:mPt+MWY3B2WMSWDB2rpD093W4RyO9aoP4WTJNiA7D0RCnb4c1r2vythwd/JGyQ5s:mP8MN3nYDgrpqm8GorTaA0G2vGGUymR

Score

1^/10

Malware Config

Signatures

Files

8aa56dfc5a6b22cdb5eba5044982ba3c4f81facbe1a521609f05565f79620b40
.exe windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Code Sign

01:39:98:1a:d9:83:bf:73:e9:51:4d:2d:42:37:92:9e
Certificate

Issuer

CN=GeoTrust RSA CA 2018,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

13/12/2022, 00:00

Not After

19/07/2023, 23:59

Subject

CN=www.samsung.com,O=Samsung SDS Co.\, Ltd.,L=Songpa-gu,ST=Seoul,C=KR

64:fd:3e:2d:5a:52:46:d0:d8:1b:6e:d0:39:58:e9:f5:97:62:bd:3e
Signer

Actual PE Digest

64:fd:3e:2d:5a:52:46:d0:d8:1b:6e:d0:39:58:e9:f5:97:62:bd:3e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 168KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nhddssnx
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mwdkpugg
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

baa93d47220682c04d92f7797d9224ce

Code Sign

01:39:98:1a:d9:83:bf:73:e9:51:4d:2d:42:37:92:9eCertificate

64:fd:3e:2d:5a:52:46:d0:d8:1b:6e:d0:39:58:e9:f5:97:62:bd:3eSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comctl32

Sections

Size: 168KB - Virtual size: 392KB

.rsrc Size: 4KB - Virtual size: 15KB

.idata Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 2.6MB

nhddssnx Size: 1.6MB - Virtual size: 1.6MB

mwdkpugg Size: 512B - Virtual size: 4KB

01:39:98:1a:d9:83:bf:73:e9:51:4d:2d:42:37:92:9e
Certificate

64:fd:3e:2d:5a:52:46:d0:d8:1b:6e:d0:39:58:e9:f5:97:62:bd:3e
Signer

.rsrc
Size: 4KB - Virtual size: 15KB

.idata
Size: 512B - Virtual size: 4KB

nhddssnx
Size: 1.6MB - Virtual size: 1.6MB

mwdkpugg
Size: 512B - Virtual size: 4KB