2024-06-09_d317f8cc99acac7c041c1d8d00ceca76_avoslocker

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-09_d317f8cc99acac7c041c1d8d00ceca76_avoslocker
Size

3.1MB
MD5

d317f8cc99acac7c041c1d8d00ceca76
SHA1

a5c70981dd1567ede2048f4290e6c55813494b4d
SHA256

ddf445616643ca6473f1041ff33569311d5fb079dfeb11e3d3d60c0a11f5f673
SHA512

6847b4ee2f6152b7b7cab161c7b38d722b283e08b6c51db3fb89b7b042d38e912758b59aaf984873b75183038e3a50bccd5415c4bde1601a7c9f1cf290d2b89a
SSDEEP

98304:PXOrX4BmRCx8IcmobEm2zMXGCo/RUNWNnh1n7JFClHMA2:iX4TQ3WMYXnFFClHMA2

Score

1^/10

Malware Config

Signatures

Files

2024-06-09_d317f8cc99acac7c041c1d8d00ceca76_avoslocker
.exe windows:6 windows x86 arch:x86

09e74085957b6bb5d7f3b0cc47307cdc

Code Sign

01
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

01/01/2004, 00:00

Not After

31/12/2028, 23:59

Subject

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:91:b4:98:a4:af:b8:64:a2:46:9b:b5:4c:17:cc:03
Certificate

Issuer

CN=GoGetSSL RSA Codesigning CA,O=GoGetSSL,L=Riga,C=LV

Not Before

20/04/2021, 00:00

Not After

20/04/2022, 23:59

Subject

CN=Media Ground,O=Media Ground,L=Gwangju,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/03/2019, 00:00

Not After

31/12/2028, 23:59

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1a:6e:54:ff:9f:9c:e0:f8:ea:cb:e7:a0:ab:56:9d:32
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

06/09/2018, 00:00

Not After

05/09/2028, 23:59

Subject

CN=GoGetSSL RSA Codesigning CA,O=GoGetSSL,L=Riga,C=LV

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\work\app\newsgo\bin\WinNewsServ.pdb

Imports

kernel32

LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
GetVolumeInformationA
OutputDebugStringA
DuplicateHandle
MultiByteToWideChar
GetModuleHandleW
GetProcAddress
LoadLibraryExA
LoadLibraryA
LoadLibraryW
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
SetErrorMode
SetEvent
WaitForSingleObject
CreateEventA
GetCurrentThreadId
SetThreadPriority
SuspendThread
ResumeThread
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GetCurrentProcessId
CompareStringA
lstrcmpA
GlobalGetAtomNameA
GetAtomNameA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileAttributesA
GetFileAttributesExA
GetFileSizeEx
GetFileTime
LocalFileTimeToFileTime
SetFileAttributesA
SetFileTime
SystemTimeToTzSpecificLocalTime
EncodePointer
GetSystemDirectoryW
FreeLibrary
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
FindResourceA
GlobalAddAtomA
GlobalFindAtomA
GlobalFlags
GetCurrentThread
GetVersionExA
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
GetOEMCP
GetCPInfo
GetACP
lstrcpyA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetFileSize
FindResourceExW
VerSetConditionMask
VerifyVersionInfoA
GetTickCount
GetProfileIntA
SearchPathA
GetDiskFreeSpaceA
ReplaceFileA
GetUserDefaultLCID
LocalLock
LocalUnlock
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
ResetEvent
WaitForSingleObjectEx
CreateEventW
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
OutputDebugStringW
RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
GetCommandLineW
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
GetSystemInfo
VirtualAlloc
VirtualQuery
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
HeapQueryInformation
QueryPerformanceFrequency
SetStdHandle
ExitProcess
GetStdHandle
GetStringTypeW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetFullPathNameW
GetFileAttributesExW
GetTimeZoneInformation
GetConsoleOutputCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetConsoleCtrlHandler
WriteConsoleW
CopyFileA
MulDiv
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
SetLastError
GetFullPathNameA
FlushFileBuffers
FindFirstFileA
GetCurrentDirectoryA
FindClose
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
RaiseException
DecodePointer
GetModuleHandleA
GetExitCodeThread
GetCommandLineA
WTSGetActiveConsoleSessionId
ProcessIdToSessionId
Process32Next
Process32First
CreateToolhelp32Snapshot
SystemTimeToFileTime
MoveFileA
FormatMessageA
LocalFree
GetWindowsDirectoryA
GetSystemDirectoryA
GetLocalTime
OpenProcess
GetExitCodeProcess
TerminateProcess
GetCurrentProcess
Sleep
GetLastError
CloseHandle
GetTempFileNameA
GetTempPathA
WriteFile
DeleteFileA
CreateFileA
CreateDirectoryA
GetModuleFileNameA
WideCharToMultiByte
FindResourceW
SizeofResource
LockResource
GetModuleFileNameW
LoadResource

user32

CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
GetAsyncKeyState
MapDialogRect
TrackMouseEvent
InvalidateRect
LoadImageW
ShowOwnedPopups
SetCursor
DeleteMenu
SetTimer
KillTimer
GetDialogBaseUnits
GetNextDlgGroupItem
SetCapture
ReleaseCapture
WindowFromPoint
DrawFocusRect
IsRectEmpty
LoadImageA
DrawIconEx
GetIconInfo
MessageBeep
EnableScrollBar
HideCaret
InvertRect
LoadCursorW
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
MapVirtualKeyA
GetKeyNameTextA
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateA
SetClassLongA
SetWindowRgn
SetParent
DrawEdge
DrawFrameControl
IsZoomed
LoadMenuW
GetSystemMenu
BringWindowToTop
SetCursorPos
CopyIcon
FrameRect
DrawIcon
UnionRect
UpdateLayeredWindow
MonitorFromPoint
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
GetMenuBarInfo
UnpackDDElParam
ReuseDDElParam
GetComboBoxInfo
PostThreadMessageA
WaitMessage
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
SetRect
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
IsClipboardFormatAvailable
GetUpdateRect
EnumChildWindows
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
SendNotifyMessageA
MonitorFromRect
InSendMessage
CreateMenu
WindowFromDC
GetWindowRgn
DestroyCursor
GetDCEx
GetTabbedTextExtentA
GetTabbedTextExtentW
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
GetWindow
GetTopWindow
RealChildWindowFromPoint
SetWindowLongA
PostQuitMessage
EqualRect
CopyRect
MapWindowPoints
GetWindowRect
GetClientRect
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
GetDlgItem
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
IsWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
PostMessageA
GetMessageTime
GetMessagePos
RegisterWindowMessageA
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
FillRect
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetWindowTextLengthA
LoadCursorA
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
GetLastActivePopup
GetParent
GetWindowLongA
IsWindowEnabled
EnableWindow
UnhookWindowsHookEx
CallNextHookEx
SetWindowsHookExA
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
SendMessageA
PeekMessageA
DispatchMessageA
TranslateMessage
GetMessageA
GetSystemMetrics
CharUpperA
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
GetWindowTextA
MessageBoxA
FindWindowExA
GetClassNameA
GetWindowThreadProcessId
UnregisterClassA
GetDesktopWindow
DestroyIcon
IsDialogMessageA
OffsetRect
GetMonitorInfoA
SetRectEmpty
CopyImage
SystemParametersInfoA
GetMenuItemInfoA
DestroyMenu
IntersectRect
PtInRect
InflateRect
SetWindowTextA
ScrollWindowEx
SendDlgItemMessageA
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextA
SetDlgItemTextA
GetDlgItemInt
SetDlgItemInt
ShowWindow
MoveWindow
GetClassLongA
MonitorFromWindow
AdjustWindowRectEx

advapi32

AdjustTokenPrivileges
RegOpenKeyExW
RegEnumKeyA
RegQueryValueA
RegEnumValueA
SetFileSecurityA
GetFileSecurityA
SetTokenInformation
ImpersonateLoggedOnUser
DuplicateTokenEx
CreateProcessAsUserA
ConvertSidToStringSidA
RegSetValueExA
RegQueryValueExA
RegQueryInfoKeyA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey
LookupPrivilegeValueA
GetTokenInformation
RegSetValueA
OpenProcessToken
StartServiceA
StartServiceCtrlDispatcherA
SetServiceStatus
RegisterServiceCtrlHandlerA
OpenServiceA
OpenSCManagerA
DeleteService
CreateServiceA
ControlService
CloseServiceHandle
ChangeServiceConfig2A

shell32

SHGetFileInfoA
SHAddToRecentDocs
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
DragQueryFileA
DragFinish
SHGetMalloc
SHBrowseForFolderA
SHAppBarMessage
ShellExecuteExA
SHGetSpecialFolderPathA
SHFileOperationA
ShellExecuteA
ExtractIconA

ole32

CreateFileMoniker
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleRegGetMiscStatus
OleRegEnumVerbs
StgCreateDocfileOnILockBytes
WriteClassStm
ReadFmtUserTypeStg
CreateGenericComposite
CreateItemMoniker
OleCreate
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateLinkToFile
OleCreateFromFile
OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleGetIconOfClass
OleRun
StgIsStorageFile
CreateOleAdviseHolder
GetRunningObjectTable
OleIsRunning
CoGetMalloc
OleQueryLinkFromData
OleQueryCreateFromData
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoGetClassObject
CoRegisterClassObject
CoRevokeClassObject
CoRegisterMessageFilter
CLSIDFromProgID
WriteFmtUserTypeStg
CreateBindCtx
StgOpenStorageOnILockBytes
StgOpenStorage
CoTreatAsClass
WriteClassStg
ReadClassStg
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
StgCreateDocfile
OleLockRunning
OleSetMenuDescriptor
PropVariantCopy
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
CreateStreamOnHGlobal
CoInitializeEx
CoCreateGuid
CoUninitialize
CreateILockBytesOnHGlobal
CoInitialize
CoCreateInstance
CLSIDFromString
CoDisconnectObject
StringFromGUID2
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
CreateDataAdviseHolder
OleDuplicateData
GetHGlobalFromILockBytes

oleaut32

RegisterTypeLi
SysStringLen
SysAllocStringLen
SysReAllocStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCreate
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayRedim
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetUBound
SafeArrayGetLBound
LoadRegTypeLi
SafeArrayUnlock
SafeArrayAccessData
LoadTypeLi
SysAllocStringByteLen
SysStringByteLen
SafeArrayUnaccessData
VariantChangeType
VariantClear
VariantInit
SafeArrayGetElement
SafeArrayPutElement
SafeArrayCopy
CreateErrorInfo
SafeArrayPtrOfIndex
VariantCopy
VarDateFromStr
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
VarBstrFromDec
VarDecFromStr
SysAllocString
GetErrorInfo
SetErrorInfo
SysFreeString
SafeArrayLock

msimg32

AlphaBlend
TransparentBlt

shlwapi

PathRemoveExtensionA
PathFindFileNameA
PathFindExtensionA
PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
StrFormatKBSizeA

uxtheme

GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
CloseThemeData
GetThemePartSize
DrawThemeParentBackground
DrawThemeText
DrawThemeBackground
GetCurrentThemeName
GetWindowTheme
GetThemeColor
OpenThemeData

oledlg

ord8

wininet

InternetQueryDataAvailable
InternetSetOptionA
InternetGetLastResponseInfoA
DeleteUrlCacheEntry
InternetReadFile
InternetCloseHandle
InternetOpenA
InternetOpenUrlA

psapi

GetModuleFileNameExA

wtsapi32

WTSQueryUserToken

userenv

CreateEnvironmentBlock

gdiplus

GdipCreateFromHDC
GdipAlloc
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdiplusShutdown
GdipDrawImageRectI
GdipSetInterpolationMode

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

gdi32

RealizePalette
GetBkColor
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetDIBits
CreateDCA
GetDeviceCaps
DeleteDC
BitBlt
CreateBitmap
CreateCompatibleDC
CreateDIBPatternBrushPt
CreateHatchBrush
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
EnumFontFamiliesExA
GetTextMetricsA
GetTextExtentPoint32A
DPtoLP
SetRectRgn
PatBlt
GetMapMode
CreateRectRgnIndirect
CreateFontIndirectA
CombineRgn
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
PolylineTo
PolyBezierTo
ExtTextOutA
TextOutA
MoveToEx
GetObjectA
ExtCreatePen
SetArcDirection
GetSystemPaletteEntries
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
DeleteObject
Escape
ExcludeClipRect
GetClipBox
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextColor
SelectClipPath
PolyDraw
ArcTo
StartDocA
SetColorAdjustment
ModifyWorldTransform
CopyMetaFileA
SetPixel
GetTextFaceA
GetTextExtentPoint32W
GetTextExtentPointA
GetTextAlign
GetStretchBltMode
GetPolyFillMode
GetNearestColor
GetBkMode
GetROP2
SetAbortProc
AbortDoc
EndPage
StartPage
EndDoc
DeleteMetaFile
CreateMetaFileA
CloseMetaFile
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
SetPaletteEntries
ExtFloodFill
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
StretchDIBits
GetCharWidthA
CreateFontA
GetCurrentObject
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
OffsetRgn
GetRgnBox
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
LPtoDP
Rectangle
SetWorldTransform

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA
GetJobA

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512KB - Virtual size: 512KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09e74085957b6bb5d7f3b0cc47307cdc

Code Sign

01Certificate

Key Usages

35:91:b4:98:a4:af:b8:64:a2:46:9b:b5:4c:17:cc:03Certificate

Extended Key Usages

Key Usages

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95Certificate

Key Usages

1a:6e:54:ff:9f:9c:e0:f8:ea:cb:e7:a0:ab:56:9d:32Certificate

Extended Key Usages

Key Usages

Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

shell32

ole32

oleaut32

msimg32

shlwapi

uxtheme

oledlg

wininet

psapi

wtsapi32

userenv

gdiplus

oleacc

imm32

winmm

gdi32

winspool.drv

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.rdata Size: 512KB - Virtual size: 512KB

.data Size: 31KB - Virtual size: 50KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 197KB - Virtual size: 197KB

01
Certificate

35:91:b4:98:a4:af:b8:64:a2:46:9b:b5:4c:17:cc:03
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95
Certificate

1a:6e:54:ff:9f:9c:e0:f8:ea:cb:e7:a0:ab:56:9d:32
Certificate

.text
Size: 2.4MB - Virtual size: 2.4MB

.rdata
Size: 512KB - Virtual size: 512KB

.data
Size: 31KB - Virtual size: 50KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 197KB - Virtual size: 197KB