bf2a66fa84df6ecaf3d0bd784ccc0f9680bd086cf362d9d3a45f4ce6bdf25a04

Sharing

Copy URL

Twitter E-mail

General

Target

bf2a66fa84df6ecaf3d0bd784ccc0f9680bd086cf362d9d3a45f4ce6bdf25a04
Size

1.2MB
MD5

81facacecd06a6857cbdebb7ea4a55bc
SHA1

c54c9e7e1e5857ab2a781a4486479bc293eb39b6
SHA256

bf2a66fa84df6ecaf3d0bd784ccc0f9680bd086cf362d9d3a45f4ce6bdf25a04
SHA512

f020b008471805813e10205df51efc5e70ee94560263364f5dc144f8133af48f768212f089f0a1bfe0ff2eeb6aabead66ef413d2e3d228a29d9f41b9b4bded3c
SSDEEP

24576:oTjFFLboAO94Hl07AOjhucyqYHridB+MqXekcaP6rU0d0bjm0CYjy:oTE4F0Us8S5dk/ukcWQdd0HJCYj

Score

1^/10

Malware Config

Signatures

Files

bf2a66fa84df6ecaf3d0bd784ccc0f9680bd086cf362d9d3a45f4ce6bdf25a04
.dll windows:6 windows x64 arch:x64

420160b25df50b7c5ecf2b0ee788bed6

Code Sign

09:41:11:ee:9b:ed:35:a1:42:3b:5e:b6:cc:02:38:ff
Certificate

Issuer

CN=Microsoft Corporation

Not Before

23/08/2024, 09:28

Not After

31/12/2039, 23:59

Subject

CN=Microsoft Corporation

37:7d:2a:f1:2f:22:77:94:35:53:8a:44:07:b5:de:0b:cb:e5:90:e2
Signer

Actual PE Digest

37:7d:2a:f1:2f:22:77:94:35:53:8a:44:07:b5:de:0b:cb:e5:90:e2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle

iphlpapi

GetInterfaceInfo

msvcrt

_wcsnicmp

psapi

GetMappedFileNameW

user32

GetWindow

advapi32

RegSetValueExA

shell32

SHGetFolderPathW

Sections

.text
Size: 2KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

420160b25df50b7c5ecf2b0ee788bed6

Code Sign

09:41:11:ee:9b:ed:35:a1:42:3b:5e:b6:cc:02:38:ffCertificate

37:7d:2a:f1:2f:22:77:94:35:53:8a:44:07:b5:de:0b:cb:e5:90:e2Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

iphlpapi

msvcrt

psapi

user32

advapi32

shell32

Sections

.text Size: 2KB - Virtual size: 24KB

Size: 1.2MB - Virtual size: 1.2MB

.idata Size: 1024B - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

Size: 4KB - Virtual size: 4KB

09:41:11:ee:9b:ed:35:a1:42:3b:5e:b6:cc:02:38:ff
Certificate

37:7d:2a:f1:2f:22:77:94:35:53:8a:44:07:b5:de:0b:cb:e5:90:e2
Signer

.text
Size: 2KB - Virtual size: 24KB

.idata
Size: 1024B - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB