673238c154f07524e0dbe8226c2a641eaf292a5a076db682c0ed9a296f9e6b29N

Sharing

Copy URL

Twitter E-mail

General

Target

673238c154f07524e0dbe8226c2a641eaf292a5a076db682c0ed9a296f9e6b29N
Size

1.9MB
MD5

fbd35f40b997df1118358e59277e0a70
SHA1

2a92c3b4f1ad634b97d8d81ae4919f8606e9916e
SHA256

673238c154f07524e0dbe8226c2a641eaf292a5a076db682c0ed9a296f9e6b29
SHA512

98094dcc847c95edad0d52376cad80b0b28b73cc1eda762235093daad5b033d15ab6c19f6a5390e18ff4ad038a54132ef479d2c330e901aea216750f80ebb8c4
SSDEEP

24576:fhHW4GQ+PLjFNvCJ9t6rG3SPGjqZO8+9z61UIPlIr91w0rI9mAS+yfQToerEH7S:f1XGFFCqq+O97IP+WFS+yfQT9

Score

1^/10

Malware Config

Signatures

Files

673238c154f07524e0dbe8226c2a641eaf292a5a076db682c0ed9a296f9e6b29N
.exe windows:4 windows x86 arch:x86

317d4efbafa14c627be166b3c5b87e3f

Code Sign

71:ab:43:b1:12:97:54:ea:58:09:10:2a:59:ec:89:50
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

28-01-2020 00:00

Not After

27-04-2023 23:59

Subject

CN=Irfan Skiljan,O=Irfan Skiljan,POSTALCODE=2723,L=Winzendorf-Muthmannsdorf,C=AT

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02-11-2018 00:00

Not After

31-12-2030 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c7:4a:c6:1d:71:5b:0d:3f:71:91:25:29:0c:0d:2c:1d:c3:ce:1c:34
Signer

Actual PE Digest

c7:4a:c6:1d:71:5b:0d:3f:71:91:25:29:0c:0d:2c:1d:c3:ce:1c:34

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileW
GetDiskFreeSpaceExW
InterlockedExchange
LocalAlloc
UnmapViewOfFile
CreateFileMappingA
MapViewOfFile
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringA
SetEndOfFile
LoadLibraryA
SetStdHandle
GetCommandLineA
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetCPInfo
GetDriveTypeA
LCMapStringW
LCMapStringA
UnhandledExceptionFilter
TerminateProcess
GetNumberFormatW
SetLastError
TlsAlloc
RaiseException
GetStringTypeW
GetStringTypeA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
RtlUnwind
DeleteCriticalSection
InitializeCriticalSection
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetModuleFileNameA
LeaveCriticalSection
EnterCriticalSection
GetVersion
GetStartupInfoW
GetModuleHandleA
CreateDirectoryW
SetCurrentDirectoryA
GetCurrentDirectoryW
SetEnvironmentVariableW
DeleteFileW
ExitThread
TlsSetValue
HeapReAlloc
HeapAlloc
HeapFree
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetLocaleInfoW
GetModuleHandleW
GetVersionExA
CreateEventW
ExitProcess
CreateThread
SetEvent
FlushFileBuffers
SetFileTime
GetFileTime
GetTickCount
MoveFileExW
FindResourceExW
GetProfileStringW
GetFileAttributesW
GetEnvironmentVariableW
LocalFileTimeToFileTime
FileTimeToLocalFileTime
CompareFileTime
SystemTimeToFileTime
GetDateFormatW
GetFullPathNameW
GetCommandLineW
SetFileAttributesW
MulDiv
SetCurrentDirectoryW
FreeResource
FindNextFileW
InterlockedDecrement
InterlockedIncrement
GetSystemDirectoryW
CompareStringW
GetLogicalDrives
GetDriveTypeW
FindFirstFileW
FindClose
CopyFileW
SetDllDirectoryW
CreateProcessW
GetLocalTime
GetPrivateProfileIntA
GetModuleFileNameW
GetTempPathW
GlobalSize
GetCurrentThreadId
ResumeThread
WaitForSingleObject
GetCurrentProcess
GetProcessAffinityMask
WritePrivateProfileStringW
GlobalUnlock
GetPrivateProfileStringW
GetWindowsDirectoryW
Sleep
WideCharToMultiByte
GetLastError
GetPrivateProfileIntW
LoadLibraryW
GetProcAddress
GetFileSize
GetShortPathNameW
GetVersionExW
MultiByteToWideChar
WriteFile
LoadLibraryExW
EnumResourceNamesW
FreeLibrary
FindResourceW
LoadResource
LockResource
SizeofResource
CreateFileW
CloseHandle
SetFilePointer
ReadFile
GlobalHandle
GlobalFree
GlobalAlloc
GlobalLock
TlsGetValue

user32

CallNextHookEx
IsChild
GetSysColor
LoadImageW
CreateAcceleratorTableW
CopyAcceleratorTableW
GetKeyboardLayout
MapVirtualKeyExW
GetKeyNameTextW
CharNextW
CharLowerBuffW
GetMenuItemInfoW
EnableMenuItem
DeleteMenu
InsertMenuW
ModifyMenuW
LoadAcceleratorsW
RegisterWindowMessageW
GetMessageW
TranslateAcceleratorW
IsDialogMessageW
GetWindowPlacement
UnregisterHotKey
PostQuitMessage
HiliteMenuItem
CheckMenuItem
RegisterHotKey
GetMenuItemCount
AppendMenuW
GetMenuItemID
DrawMenuBar
WinHelpW
GetWindow
SendNotifyMessageW
GetScrollPos
GetMenuItemRect
CallWindowProcW
IsIconic
GetMenuState
GetWindowLongW
GetMessagePos
SystemParametersInfoW
BringWindowToTop
ShowCursor
CopyRect
DrawEdge
FrameRect
DrawFocusRect
GetFocus
EnumChildWindows
IsWindowEnabled
CheckRadioButton
EmptyClipboard
SetClipboardData
GetForegroundWindow
ScreenToClient
SetWindowTextA
GetDlgItemTextA
SetDlgItemTextA
GetKeyState
SetCapture
CloseWindow
FindWindowW
IsMenu
GetMenuStringW
UnhookWindowsHookEx
SetWindowsHookExW
FindWindowExW
SetCursorPos
ReleaseCapture
ShowScrollBar
SetScrollInfo
GetScrollRange
GetCapture
OffsetRect
IntersectRect
DrawFrameControl
SystemParametersInfoA
GetAsyncKeyState
GetDesktopWindow
SetWindowPos
GetSubMenu
TrackPopupMenu
MessageBoxW
GetWindowTextW
DialogBoxParamW
CreateDialogParamW
SetWindowLongW
PeekMessageW
TranslateMessage
DispatchMessageW
MessageBoxA
LoadIconW
RegisterClassW
LoadMenuW
GetMenu
DestroyMenu
SetMenu
SetScrollRange
SetScrollPos
BeginPaint
EndPaint
GetParent
SetActiveWindow
ScrollWindow
DefWindowProcW
ShowWindow
SetWindowTextW
MoveWindow
KillTimer
InvalidateRect
UpdateWindow
SetTimer
OpenClipboard
IsClipboardFormatAvailable
GetClipboardData
CloseClipboard
ClientToScreen
IsZoomed
GetScrollInfo
GetClientRect
GetClassNameW
IsWindowVisible
GetWindowRect
IsRectEmpty
GetCursor
GetCursorPos
WindowFromPoint
AttachThreadInput
DrawIconEx
GetDC
ReleaseDC
LoadCursorW
SetCursor
MessageBeep
EndDialog
IsDlgButtonChecked
GetDlgItemTextW
GetDlgItemInt
SetFocus
SendDlgItemMessageW
SetDlgItemTextW
SetDlgItemInt
GetDlgItem
EnableWindow
GetActiveWindow
GetWindowThreadProcessId
SetForegroundWindow
PostMessageW
PostThreadMessageW
DrawTextW
DrawTextA
IsWindow
DestroyIcon
GetIconInfo
GetSystemMetrics
FillRect
DrawIcon
CreateWindowExW
DestroyWindow
wsprintfW
SendMessageW
LoadStringW
DestroyAcceleratorTable

gdi32

CreateEnhMetaFileW
PatBlt
GetTextMetricsW
GetStockObject
CreateFontIndirectW
GetDIBits
Ellipse
CreatePen
CreateBrushIndirect
DeleteDC
BitBlt
CreateCompatibleBitmap
CreateDCW
CreateDIBitmap
GetSystemPaletteEntries
GetNearestPaletteIndex
Rectangle
SetTextColor
GetPixel
SetBkColor
EndPage
StretchBlt
SetDIBits
StartPage
ResetDCW
EndDoc
StartDocW
LineTo
MoveToEx
GetTextExtentPoint32W
GetDCOrgEx
GetClipBox
SetStretchBltMode
StretchDIBits
CloseEnhMetaFile
GetEnhMetaFilePaletteEntries
CreatePalette
GetEnhMetaFileW
GetMetaFileW
GetMetaFileBitsEx
DeleteMetaFile
SetWinMetaFileBits
GetEnhMetaFileHeader
SelectPalette
DeleteEnhMetaFile
RealizePalette
PlayEnhMetaFile
GetObjectW
DeleteObject
CreateICW
CreateCompatibleDC
GetDeviceCaps
CreateBitmap
SelectObject
CreateSolidBrush
SetBkMode
TextOutA

comctl32

CreateStatusWindowW
ImageList_LoadImageW
ImageList_Draw
ImageList_Replace
ord17
ImageList_GetIconSize
CreateToolbarEx
ImageList_Destroy
ImageList_Create
ImageList_Add
ImageList_ReplaceIcon
ImageList_AddMasked

shell32

SHBrowseForFolderW
ShellExecuteExW
SHChangeNotify
SHGetSpecialFolderLocation
DragAcceptFiles
DragFinish
SHGetPathFromIDListW
SHFileOperationW
ShellExecuteW
SHGetMalloc
SHGetDesktopFolder
SHGetDataFromIDListW
SHGetFileInfoW
DragQueryFileW
ExtractIconW

advapi32

RegOpenKeyExA
RegSetValueW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyW
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
IsTextUnicode
RegQueryValueExA

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 274KB - Virtual size: 274KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 216KB - Virtual size: 215KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

317d4efbafa14c627be166b3c5b87e3f

Code Sign

71:ab:43:b1:12:97:54:ea:58:09:10:2a:59:ec:89:50Certificate

Extended Key Usages

Key Usages

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6aCertificate

Extended Key Usages

Key Usages

c7:4a:c6:1d:71:5b:0d:3f:71:91:25:29:0c:0d:2c:1d:c3:ce:1c:34Signer

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

shell32

advapi32

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 274KB - Virtual size: 274KB

.data Size: 74KB - Virtual size: 142KB

.rsrc Size: 216KB - Virtual size: 215KB

71:ab:43:b1:12:97:54:ea:58:09:10:2a:59:ec:89:50
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

c7:4a:c6:1d:71:5b:0d:3f:71:91:25:29:0c:0d:2c:1d:c3:ce:1c:34
Signer

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 274KB - Virtual size: 274KB

.data
Size: 74KB - Virtual size: 142KB

.rsrc
Size: 216KB - Virtual size: 215KB