DiskMark64[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

DiskMark64.exe
Size

878KB
MD5

8a0a2a18c48ac0ee224fbca908dc63c0
SHA1

404c73087316714e9ffb59f01f46e2a6875f80be
SHA256

76e45c95614c812584103ba1a96339d1d93761acccc5f04a58e4a7fdd869ecdb
SHA512

e87c681ef2807bf5aacc4b4ef9586ee7f87de41f85a3748e6961f511d50dc3d21656faa2846f97e39b132d1af50779f9ba41dd16082f3b645ff18ec11f0f3e63
SSDEEP

12288:hn0oO0AAUT504cO9gExv99gd3cDFFDnOrsYawsKZDwnxf1JaiufV6FtgFYabitdA:h059Lv9eVcZErfZOJaiuN6qitY1pp

Score

1^/10

Malware Config

Signatures

Files

DiskMark64.exe
.exe windows:6 windows x64 arch:x64

b88a49eca4369a4d7d912bebdfae2852

Code Sign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31/05/2021, 06:43

Not After

17/09/2029, 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:40:05:f1:0b:2e:57:68:09:a7:d1:c2:86:60:28:45
Certificate

Issuer

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

06/02/2024, 14:52

Not After

02/02/2025, 09:32

Subject

CN=Open Source Developer\, Noriyuki Miyazaki,O=Open Source Developer,L=Sapporo,ST=Hokkaido,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

09:c5:cc:f8:bb:66:7d:71:37:aa:c1:59:80:06:cb:31
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

02/11/2023, 08:32

Not After

30/10/2034, 08:32

Subject

CN=Certum Timestamp 2023,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:40:05:f1:0b:2e:57:68:09:a7:d1:c2:86:60:28:45
Certificate

Issuer

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

06/02/2024, 14:52

Not After

02/02/2025, 09:32

Subject

CN=Open Source Developer\, Noriyuki Miyazaki,O=Open Source Developer,L=Sapporo,ST=Hokkaido,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

09:c5:cc:f8:bb:66:7d:71:37:aa:c1:59:80:06:cb:31
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

02/11/2023, 08:32

Not After

30/10/2034, 08:32

Subject

CN=Certum Timestamp 2023,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31/05/2021, 06:43

Not After

17/09/2029, 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

29:cd:70:30:2b:3e:fc:a3:05:b1:22:75:6e:07:68:47:73:8f:25:36:61:07:af:c2:86:3e:54:20:fd:1d:2e:48
Signer

Actual PE Digest

29:cd:70:30:2b:3e:fc:a3:05:b1:22:75:6e:07:68:47:73:8f:25:36:61:07:af:c2:86:3e:54:20:fd:1d:2e:48

Digest Algorithm

sha256

PE Digest Matches

true

0d:e2:cf:c3:68:c7:cb:05:a0:c0:9f:1f:39:49:45:02:33:2d:98:f9
Signer

Actual PE Digest

0d:e2:cf:c3:68:c7:cb:05:a0:c0:9f:1f:39:49:45:02:33:2d:98:f9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

LocalReAlloc
FileTimeToSystemTime
GlobalFlags
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
FileTimeToLocalFileTime
GetFileAttributesW
GetFileAttributesExW
GetFileSizeEx
GetFileTime
SystemTimeToTzSpecificLocalTime
SetErrorMode
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GlobalHandle
ReadConsoleW
GetStringTypeW
SetStdHandle
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
GetConsoleMode
GetConsoleOutputCP
LCMapStringW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
GetFileType
ExitProcess
GetStdHandle
HeapQueryInformation
FreeLibraryAndExitThread
ExitThread
CreateThread
GetCommandLineA
VirtualQuery
GetSystemInfo
RtlPcToFileHeader
RtlUnwindEx
RaiseException
OutputDebugStringW
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
DuplicateHandle
UnlockFile
SetFilePointer
ReadFile
LockFile
GetFullPathNameW
GetFileSize
FlushFileBuffers
ResumeThread
LocalAlloc
SuspendThread
SetThreadPriority
CreateEventW
SetEvent
lstrcmpA
GetCurrentThread
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
GlobalDeleteAtom
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
FormatMessageW
MulDiv
LocalFree
GlobalFree
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
LoadLibraryW
GetModuleHandleExW
SetLastError
OutputDebugStringA
GetACP
MultiByteToWideChar
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
HeapReAlloc
HeapSize
HeapFree
GetTickCount
GetWindowsDirectoryW
GetCurrentProcess
VerifyVersionInfoW
VerSetConditionMask
FindClose
FindNextFileW
FindFirstFileW
lstrcmpW
GetProcAddress
GetModuleHandleW
VirtualProtect
LoadLibraryExW
WideCharToMultiByte
GlobalUnlock
GlobalLock
GlobalAlloc
GetLocalTime
GetDriveTypeW
GetLogicalDriveStringsW
TerminateProcess
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetCommandLineW
RemoveDirectoryW
DeleteFileW
VirtualFree
WriteFile
VirtualAlloc
DeviceIoControl
SetEndOfFile
SetFilePointerEx
CreateFileW
GetVersionExW
GetVolumeInformationW
CreateDirectoryW
GetDiskFreeSpaceExW
GetModuleFileNameW
Sleep
GetExitCodeProcess
WaitForSingleObject
CloseHandle
UnmapViewOfFile
CreateProcessW
MapViewOfFile
CreateFileMappingW
GetCurrentProcessId
GetUserDefaultLCID
FindResourceW
LoadResource
LockResource
SizeofResource
LeaveCriticalSection
EnterCriticalSection
GetLastError
WriteConsoleW
InitializeCriticalSectionAndSpinCount

user32

MessageBoxW
AdjustWindowRectEx
RemovePropW
GetPropW
GetScrollPos
RedrawWindow
ValidateRect
EndPaint
BeginPaint
GetForegroundWindow
UpdateWindow
SetMenu
GetMenu
GetCapture
GetKeyState
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
GetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
IsDialogMessageW
GetWindow
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
GetFocus
SetFocus
GetDlgCtrlID
SetWindowPos
MoveWindow
ShowWindow
MapWindowPoints
SetActiveWindow
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
GetSysColor
PtInRect
InvalidateRect
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetMenuItemCount
GetMenuItemID
GetParent
OffsetRect
SetRectEmpty
SendDlgItemMessageA
GetWindowLongPtrW
SetWindowLongPtrW
GetClassLongPtrW
GetClassNameW
GetTopWindow
GetLastActivePopup
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
WinHelpW
GetMonitorInfoW
UnregisterClassW
FrameRect
PrintWindow
CheckMenuItem
SetMenuItemBitmaps
ClientToScreen
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
ScreenToClient
EnableWindow
WaitForInputIdle
PostMessageW
LoadIconW
LoadAcceleratorsW
SendMessageW
SetForegroundWindow
GetComboBoxInfo
SetWindowLongW
GetWindowLongW
SetLayeredWindowAttributes
TranslateAcceleratorW
IsIconic
GetSystemMetrics
GetClientRect
EnableMenuItem
ModifyMenuW
GetSubMenu
CheckMenuRadioItem
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
DrawMenuBar
CopyRect
wsprintfW
SetCursor
LoadCursorW
GetWindowRect
FillRect
SystemParametersInfoW
SetPropW
GetDC
ReleaseDC
GetWindowThreadProcessId
PostQuitMessage
GetMessageW
TranslateMessage
GetCursorPos
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
RealChildWindowFromPoint
GetSysColorBrush
WindowFromPoint
CharUpperW
MonitorFromWindow
KillTimer
SetTimer
AppendMenuW
DestroyMenu
GetDesktopWindow
RemoveMenu
MonitorFromRect

gdi32

GetBkColor
CreatePatternBrush
GetPixel
SetBkColor
CreateBitmap
Escape
GetClipBox
GetStockObject
PtVisible
RectVisible
RestoreDC
SaveDC
SetBkMode
SetMapMode
GetTextColor
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateSolidBrush
CreateFontIndirectW
GetTextExtentPoint32W
SetTextColor
LineTo
MoveToEx
CreatePen
GetDeviceCaps
CreateCompatibleBitmap
SetBitmapBits
GetBitmapBits
GetObjectW
SetDIBColorTable
SelectObject
DeleteObject
CreateDIBSection
BitBlt
CreateCompatibleDC
DeleteDC
EnumFontFamiliesExW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegEnumValueW
RegOpenKeyExW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW

shell32

ord680
ShellExecuteW
CommandLineToArgvW
SHAppBarMessage
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetMalloc

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathFindFileNameW
PathStripToRootW
PathRemoveFileSpecW
PathIsUNCW
PathFindExtensionW

uxtheme

SetWindowTheme

ole32

CoTaskMemFree
CoSetProxyBlanket
CoCreateInstance
CoUninitialize
CoCreateGuid
CoInitialize
CoInitializeEx

oleaut32

VariantChangeType
VariantClear
VariantInit
SysFreeString
SysAllocString

gdiplus

GdipDrawImageRectI
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageI
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipDisposeImage
GdipAlloc
GdipFree
GdiplusShutdown
GdipGetImagePixelFormat
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipSaveImageToFile
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFile
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromHBITMAP

winmm

timeEndPeriod
timeGetTime
timeGetDevCaps
timeBeginPeriod

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 533KB - Virtual size: 533KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b88a49eca4369a4d7d912bebdfae2852

Code Sign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27Certificate

Key Usages

2a:40:05:f1:0b:2e:57:68:09:a7:d1:c2:86:60:28:45Certificate

Extended Key Usages

Key Usages

09:c5:cc:f8:bb:66:7d:71:37:aa:c1:59:80:06:cb:31Certificate

Extended Key Usages

Key Usages

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39Certificate

Extended Key Usages

Key Usages

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87Certificate

Extended Key Usages

Key Usages

2a:40:05:f1:0b:2e:57:68:09:a7:d1:c2:86:60:28:45Certificate

Extended Key Usages

Key Usages

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39Certificate

Extended Key Usages

Key Usages

09:c5:cc:f8:bb:66:7d:71:37:aa:c1:59:80:06:cb:31Certificate

Extended Key Usages

Key Usages

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87Certificate

Extended Key Usages

Key Usages

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27Certificate

Key Usages

29:cd:70:30:2b:3e:fc:a3:05:b1:22:75:6e:07:68:47:73:8f:25:36:61:07:af:c2:86:3e:54:20:fd:1d:2e:48Signer

0d:e2:cf:c3:68:c7:cb:05:a0:c0:9f:1f:39:49:45:02:33:2d:98:f9Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

winmm

version

oleacc

Sections

.text Size: 533KB - Virtual size: 533KB

.rdata Size: 164KB - Virtual size: 163KB

.data Size: 10KB - Virtual size: 30KB

.pdata Size: 22KB - Virtual size: 21KB

_RDATA Size: 512B - Virtual size: 500B

.rsrc Size: 127KB - Virtual size: 127KB

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

2a:40:05:f1:0b:2e:57:68:09:a7:d1:c2:86:60:28:45
Certificate

09:c5:cc:f8:bb:66:7d:71:37:aa:c1:59:80:06:cb:31
Certificate

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

2a:40:05:f1:0b:2e:57:68:09:a7:d1:c2:86:60:28:45
Certificate

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

09:c5:cc:f8:bb:66:7d:71:37:aa:c1:59:80:06:cb:31
Certificate

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

29:cd:70:30:2b:3e:fc:a3:05:b1:22:75:6e:07:68:47:73:8f:25:36:61:07:af:c2:86:3e:54:20:fd:1d:2e:48
Signer

0d:e2:cf:c3:68:c7:cb:05:a0:c0:9f:1f:39:49:45:02:33:2d:98:f9
Signer

.text
Size: 533KB - Virtual size: 533KB

.rdata
Size: 164KB - Virtual size: 163KB

.data
Size: 10KB - Virtual size: 30KB

.pdata
Size: 22KB - Virtual size: 21KB

_RDATA
Size: 512B - Virtual size: 500B

.rsrc
Size: 127KB - Virtual size: 127KB