c0ef6a6cec979c91de547c49fe3442c0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

c0ef6a6cec979c91de547c49fe3442c0N.exe
Size

135KB
MD5

c0ef6a6cec979c91de547c49fe3442c0
SHA1

b4853c0f0405aee364fd281005a8ce2c1e8ecd7f
SHA256

eed99fa143d76dcd63b2d5ffd1146a71217b536144b027af2058eddf217d6456
SHA512

9d125236016dc6158b5f021d34860460cdf41e4d052ac5337023168c214df3cf393c1c58a51bc3c1f7ee555a2646e271871d71a224335595d9d11e86af33a045
SSDEEP

1536:1JlfLLMyAJlRj7ep+z/jWaVhFbAFX6ERNtFz4mqPkP/9zq0r/mS:1JlfxyzHep+z/yaHpE6EtSmq+Fzqc/F

Score

1^/10

Malware Config

Signatures

Files

c0ef6a6cec979c91de547c49fe3442c0N.exe
.dll windows:0 windows x64 arch:x64

Code Sign

54:98:8e:40:c8:51:d6:b3:4e:fc:8a:61:d3:93:33:48
Certificate

Issuer

CN=GETAC TigerLake

Not Before

06/04/2020, 01:49

Not After

31/12/2039, 23:59

Subject

CN=GETAC TigerLake

01:19:75:74:71:c9:92:d7:44:df:a5:96:eb:b9:70:15
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Not Before

02/11/2023, 10:30

Not After

04/12/2034, 10:30

Subject

CN=Globalsign TSA for Advanced - G4 - 202311,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

20/06/2018, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

10/12/2014, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

ef:49:77:a2:89:24:d0:69:52:6c:0c:29:75:57:9f:6c:56:6a:8f:b9
Signer

Actual PE Digest

ef:49:77:a2:89:24:d0:69:52:6c:0c:29:75:57:9f:6c:56:6a:8f:b9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.text
Size: 64B - Virtual size: 39B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Code Sign

54:98:8e:40:c8:51:d6:b3:4e:fc:8a:61:d3:93:33:48Certificate

01:19:75:74:71:c9:92:d7:44:df:a5:96:eb:b9:70:15Certificate

Extended Key Usages

Key Usages

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74Certificate

Key Usages

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51Certificate

Key Usages

ef:49:77:a2:89:24:d0:69:52:6c:0c:29:75:57:9f:6c:56:6a:8f:b9Signer

Headers

File Characteristics

Sections

.text Size: 64B - Virtual size: 39B

.data Size: 128KB - Virtual size: 128KB

54:98:8e:40:c8:51:d6:b3:4e:fc:8a:61:d3:93:33:48
Certificate

01:19:75:74:71:c9:92:d7:44:df:a5:96:eb:b9:70:15
Certificate

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

ef:49:77:a2:89:24:d0:69:52:6c:0c:29:75:57:9f:6c:56:6a:8f:b9
Signer

.text
Size: 64B - Virtual size: 39B

.data
Size: 128KB - Virtual size: 128KB