caab1556394c615e952bf021427e9d60N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

caab1556394c615e952bf021427e9d60N.exe
Size

387KB
MD5

caab1556394c615e952bf021427e9d60
SHA1

5c7ba8d74c36e6315b2dc80873e6de0220eeff97
SHA256

5d3e1f7a80272fea7d9be56835bc18cdb44fe1773482cf20b0935255eb0710e2
SHA512

2e450268313fe9114e28c23374a837a6c650ab6f97f44c144efa859cf3cbefb38c5a3404a8a77044cd0fed7a77490047ab4888c889fc8e40fc5571b25c564d0f
SSDEEP

12288:S6WF1XSI7sHN0Wl+jdzAX1CLPsyapEaC+N/qYe:i1Xr7smWsZ+1MsyapEajNiYe

Score

1^/10

Malware Config

Signatures

Files

caab1556394c615e952bf021427e9d60N.exe
.exe windows:4 windows x86 arch:x86

5828baf7e5cc6a84ecad5786dfe10ecb

Code Sign

6e:c6:a2:23:fc:57:fd:9a:46:cf:1f:eb:fa:37:97:78
Certificate

Issuer

CN=Root Agency

Not Before

27/10/2011, 07:50

Not After

31/12/2039, 23:59

Subject

CN=Joe's-Software-Emporium

9f:3d:8e:a4:81:e5:ab:5c:87:1e:0e:57:45:4a:5d:a2:6b:37:78:3c
Signer

Actual PE Digest

9f:3d:8e:a4:81:e5:ab:5c:87:1e:0e:57:45:4a:5d:a2:6b:37:78:3c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glNormal3f
glVertex4dv
glNormal3b
glFrontFace
glEdgeFlag
glColor4usv

glu32

gluQuadricNormals
gluGetTessProperty
gluBuild1DMipmaps
gluTessVertex
gluTessEndContour
gluNewTess
gluNurbsCallback
gluDisk
gluTessBeginContour

user32

LoadCursorA

ole32

RegisterDragDrop

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

kernel32

GetModuleHandleA
GetProcAddress
VirtualAlloc
ExitProcess
GetStartupInfoA
GetVersion
GetCurrentProcess
GetOEMCP
GetCurrentThreadId

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 372KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5828baf7e5cc6a84ecad5786dfe10ecb

Code Sign

6e:c6:a2:23:fc:57:fd:9a:46:cf:1f:eb:fa:37:97:78Certificate

9f:3d:8e:a4:81:e5:ab:5c:87:1e:0e:57:45:4a:5d:a2:6b:37:78:3cSigner

Headers

File Characteristics

Imports

opengl32

glu32

user32

ole32

msvcrt

kernel32

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 372KB - Virtual size: 432KB

.rsrc Size: 5KB - Virtual size: 5KB

6e:c6:a2:23:fc:57:fd:9a:46:cf:1f:eb:fa:37:97:78
Certificate

9f:3d:8e:a4:81:e5:ab:5c:87:1e:0e:57:45:4a:5d:a2:6b:37:78:3c
Signer

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 372KB - Virtual size: 432KB

.rsrc
Size: 5KB - Virtual size: 5KB