AWDAWDWADWADDWADADDDD[.]EXE

Sharing

Copy URL

Twitter E-mail

General

Target

AWDAWDWADWADDWADADDDD.EXE
Size

316KB
MD5

978c4ddf03094e96f33dbc51fd11cee3
SHA1

cceadc40fb963911b3aab118a339ae5354ea547b
SHA256

1340a8dd87489dc77bdbddbd43d0fdad670d5352e1d5d6f711b7d3f8e6105ec1
SHA512

93c2d0e6b0fdf1464ece0a7adedeaea058d4a685e96c96e36943e5977e9be5a99e84a3167f24a33c40626afd8e945d428fe4573257353ba75d2de536078e8997
SSDEEP

6144:wwhnm9MzZA5rESNJvIibp66Ic1EoCMH9O1BNI2:wqnm9My5rEa9Ih6x1EoCMo7I

Score

1^/10

Malware Config

Signatures

Files

AWDAWDWADWADDWADADDDD.EXE
.exe windows:6 windows x64 arch:x64

9d63601b75db6820cb6e18c76c455c6b

Code Sign

33:00:03:e2:cd:10:66:ad:8d:b8:1c:06:08:00:00:00:03:e2:cd
Certificate

Issuer

CN=Microsoft Azure RSA TLS Issuing CA 07,O=Microsoft Corporation,C=US

Not Before

14-09-2023 17:24

Not After

08-09-2024 17:24

Subject

CN=www.microsoft.com,O=Microsoft Corporation,L=Redmond,ST=WA,C=US

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12-01-2016 00:00

Not After

11-01-2031 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23-12-2017 00:00

Not After

22-03-2029 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

c2:1d:06:29:38:51:35:51:32:c9:47:fe:a2:6c:29:e2:00:87:c7:41:12:b6:d7:e8:6c:1c:8e:54:4e:a4:4f:89
Signer

Actual PE Digest

c2:1d:06:29:38:51:35:51:32:c9:47:fe:a2:6c:29:e2:00:87:c7:41:12:b6:d7:e8:6c:1c:8e:54:4e:a4:4f:89

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetCurrentProcess
InitializeProcThreadAttributeList
IsProcessorFeaturePresent
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
UpdateProcThreadAttribute

Sections

.text
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 684B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 140B

_sysc
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d63601b75db6820cb6e18c76c455c6b

Code Sign

33:00:03:e2:cd:10:66:ad:8d:b8:1c:06:08:00:00:00:03:e2:cdCertificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

c2:1d:06:29:38:51:35:51:32:c9:47:fe:a2:6c:29:e2:00:87:c7:41:12:b6:d7:e8:6c:1c:8e:54:4e:a4:4f:89Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 176KB - Virtual size: 175KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 64KB - Virtual size: 65KB

.pdata Size: 1024B - Virtual size: 684B

.00cfg Size: 512B - Virtual size: 48B

.retplne Size: 512B - Virtual size: 140B

_sysc Size: 512B - Virtual size: 72B

.rsrc Size: 57KB - Virtual size: 57KB

.reloc Size: 512B - Virtual size: 48B

33:00:03:e2:cd:10:66:ad:8d:b8:1c:06:08:00:00:00:03:e2:cd
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

c2:1d:06:29:38:51:35:51:32:c9:47:fe:a2:6c:29:e2:00:87:c7:41:12:b6:d7:e8:6c:1c:8e:54:4e:a4:4f:89
Signer

.text
Size: 176KB - Virtual size: 175KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 64KB - Virtual size: 65KB

.pdata
Size: 1024B - Virtual size: 684B

.00cfg
Size: 512B - Virtual size: 48B

.retplne
Size: 512B - Virtual size: 140B

_sysc
Size: 512B - Virtual size: 72B

.rsrc
Size: 57KB - Virtual size: 57KB

.reloc
Size: 512B - Virtual size: 48B