afc2ed9a12d9f60f78d2ad7028c46b7d36204bd4ff7ad6b3e306aa70745175fe

Sharing

Copy URL Twitter E-mail

General

Target

afc2ed9a12d9f60f78d2ad7028c46b7d36204bd4ff7ad6b3e306aa70745175fe
Size

2.6MB
MD5

b7b4f9a0b431d79b95bd2ec52f32b02c
SHA1

2a615d3699cd4fff34043169ea2052f958fb2eaf
SHA256

afc2ed9a12d9f60f78d2ad7028c46b7d36204bd4ff7ad6b3e306aa70745175fe
SHA512

cedaaf1dd33b8d78f63338cd83e36f05d79e80d08d763bb8f1f313e7a9f244e9baf900ff450331c44dee39ea0d518ff81455d067c102d189f6d10b05eca7f142
SSDEEP

49152:DyOAdTvWsKz5Y6XrJQtXLzFTKhC0NabU6NVc8:4dT1KlBbJoBTK0Ewz

Score

1^/10

Malware Config

Signatures

Files

afc2ed9a12d9f60f78d2ad7028c46b7d36204bd4ff7ad6b3e306aa70745175fe
.exe windows:6 windows x86 arch:x86

Code Sign

38:95:ee:62:d9:c8:f9:60:b5:de:44:39:2c:c6:f3:a7
Certificate

Issuer

CN=Exertions Buffaloes Assistant

Not Before

06/02/2023, 08:00

Not After

06/02/2024, 08:00

Subject

CN=Exertions Buffaloes Assistant

3c:b7:da:09:71:fe:fe:de:fa:9c:3d:50:1b:69:08:f1:da:1d:46:8c:33:3c:5b:0c:88:36:f5:2a:19:f1:ef:36
Signer

Actual PE Digest

3c:b7:da:09:71:fe:fe:de:fa:9c:3d:50:1b:69:08:f1:da:1d:46:8c:33:3c:5b:0c:88:36:f5:2a:19:f1:ef:36

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 835KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 140KB - Virtual size: 468KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 7KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 983KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 74KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 586KB - Virtual size: 588KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Code Sign

38:95:ee:62:d9:c8:f9:60:b5:de:44:39:2c:c6:f3:a7Certificate

3c:b7:da:09:71:fe:fe:de:fa:9c:3d:50:1b:69:08:f1:da:1d:46:8c:33:3c:5b:0c:88:36:f5:2a:19:f1:ef:36Signer

Headers

DLL Characteristics

File Characteristics

Sections

Size: 835KB - Virtual size: 2.0MB

Size: 140KB - Virtual size: 468KB

Size: 7KB - Virtual size: 56KB

.rsrc Size: 983KB - Virtual size: 2.0MB

Size: 74KB - Virtual size: 176KB

.data Size: 586KB - Virtual size: 588KB

.adata Size: - Virtual size: 4KB

38:95:ee:62:d9:c8:f9:60:b5:de:44:39:2c:c6:f3:a7
Certificate

3c:b7:da:09:71:fe:fe:de:fa:9c:3d:50:1b:69:08:f1:da:1d:46:8c:33:3c:5b:0c:88:36:f5:2a:19:f1:ef:36
Signer

.rsrc
Size: 983KB - Virtual size: 2.0MB

.data
Size: 586KB - Virtual size: 588KB

.adata
Size: - Virtual size: 4KB