cf06da5168e14118d6ecdc23b00c397da94f3742ce20fd72e47cb7ba9197d8feN[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

cf06da5168e14118d6ecdc23b00c397da94f3742ce20fd72e47cb7ba9197d8feN.exe
Size

676KB
MD5

5b3deb3070cd9f7e3d0d92b3809ad6e0
SHA1

c7e463361fc778e01c41905fb5a7559661d26bcf
SHA256

cf06da5168e14118d6ecdc23b00c397da94f3742ce20fd72e47cb7ba9197d8fe
SHA512

544140537645a304614a9d0c5db17a5040b64dd10df72f81d47279bec23f9bb2a68936c4a20b66bfd13a6622352b71b9357a259c611fc0b6122d424d69f169fb
SSDEEP

12288:YHcRey4pHcRey4pHcRey4+Z2E6lbYvjha5snTOuCX:YCqCqCLZf6lK2GTOnX

Score

1^/10

Malware Config

Signatures

Files

cf06da5168e14118d6ecdc23b00c397da94f3742ce20fd72e47cb7ba9197d8feN.exe
.exe windows:4 windows x86 arch:x86

b6efbadda0c70ffd012b381cbefdab78

Code Sign

43:27:b1:36:9b:48:0c:98:4c:81:13:09:14:6f:7c:57
Certificate

Issuer

CN=DVUOWAAKOSJVSWJNWF

Not Before

16-09-2020 12:44

Not After

31-12-2039 23:59

Subject

CN=DVUOWAAKOSJVSWJNWF

Extended Key Usages

ExtKeyUsageCodeSigning

75:11:f6:41:cb:78:33:e2:61:39:b5:f6:84:36:6c:45:31:12:c5:d1
Signer

Actual PE Digest

75:11:f6:41:cb:78:33:e2:61:39:b5:f6:84:36:6c:45:31:12:c5:d1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
Sleep
VirtualFree
VirtualAlloc
GetSystemInfo
lstrlenW
lstrcpynW
LoadLibraryExW
SetErrorMode
MultiByteToWideChar
GetLastError
HeapFree
GetProcessHeap
HeapAlloc
HeapReAlloc
GetCPInfoExW
GetProcAddress
LoadLibraryW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCommandLineA
GetVersionExA
GetStartupInfoA
ExitProcess
GetModuleHandleA
RaiseException
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsAlloc
InterlockedIncrement
SetLastError
InterlockedDecrement
TlsFree
TlsSetValue
TlsGetValue
GetModuleHandleW
HeapDestroy
HeapCreate
OutputDebugStringA
GetCPInfo
GetOEMCP
LCMapStringA
LCMapStringW
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
InitializeCriticalSection
RtlUnwind
SetFilePointer
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
VirtualProtect
VirtualQuery
FlushFileBuffers
ReadFile
CloseHandle

user32

GetSystemMetrics
SetWindowPos
GetForegroundWindow
GetWindowRect
LoadStringW
LoadCursorW
SetCursor
SetWindowLongW
MessageBoxW
SetWindowTextW
GetWindowTextW
DestroyCursor
SetFocus
PostMessageW
ReleaseDC
GetDC
SystemParametersInfoW
GetDlgItem
SendMessageW
EnableWindow
ShowWindow
LoadIconA
LoadCursorFromFileW
GetClipboardViewer
LoadCursorFromFileA
IsMenu
IsClipboardFormatAvailable
IsIconic
IsCharAlphaNumericA
GetTopWindow
IsGUIThread
VkKeyScanA
WindowFromDC
IsCharAlphaNumericW
GetQueueStatus
OpenIcon
GetParent
GetWindowTextLengthW
IsCharLowerA
OemKeyScan
ShowCaret
IsCharUpperW
GetSysColor

gdi32

DeleteObject
CreateFontIndirectW
GetDeviceCaps
UnrealizeObject
TextOutA
TextOutW
StretchDIBits
StretchBlt
StartPage
StartDocA
StartDocW
SetWindowOrgEx
SetWinMetaFileBits
SetViewportOrgEx
SetTextColor
SetStretchBltMode
SetROP2
SetPixel
SetMapMode
SetEnhMetaFileBits
SetDIBits
SetDIBColorTable
SetDCPenColor
SetBrushOrgEx
SetBkMode
SetBkColor
SetAbortProc
SelectPalette
SelectObject
SelectClipRgn
SaveDC
RoundRect
RestoreDC
ResizePalette
Rectangle
RectVisible
RealizePalette
Polyline
Polygon
PolyBezierTo
PolyBezier
PlayEnhMetaFile
Pie
PatBlt
OffsetRgn
MoveToEx
MaskBlt
LineTo
LPtoDP
IntersectClipRect
GetWindowOrgEx
GetWinMetaFileBits
GetViewportOrgEx
GetTextMetricsW
GetTextFaceA
GetTextExtentPointW
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextColor
GetSystemPaletteEntries
GetStockObject
GetRgnBox
GetPixel
GetPaletteEntries
GetObjectW
GetNearestPaletteIndex
GetMapMode
GetEnhMetaFilePaletteEntries
GetEnhMetaFileHeader
GetEnhMetaFileDescriptionW
GetEnhMetaFileBits
GetDIBits
GetDIBColorTable
GetCurrentPositionEx
GetCurrentObject
GetClipRgn
GetClipBox
GetBrushOrgEx
GetBkMode
GetBkColor
GetBitmapBits
GdiFlush
FrameRgn
ExtTextOutW
ExtFloodFill
ExcludeClipRect
EnumFontsW
EnumFontFamiliesExW
EndPage
EndDoc
Ellipse
DeleteEnhMetaFile
DeleteDC
CreateSolidBrush
CreateRoundRectRgn
CreateRectRgnIndirect
CreateRectRgn
CreatePenIndirect
CreatePen
CreatePatternBrush
CreatePalette
CreateICW
CreateHalftonePalette
CreateFontA
CreateFontW
CreateEnhMetaFileW
CreateDIBitmap
CreateDIBSection
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmap
CopyEnhMetaFileW
CombineRgn
CloseEnhMetaFile
Chord
BitBlt
ArcTo
Arc
AngleArc
AbortDoc

comctl32

ord17

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

r421
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

r42
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata2
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

r4
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

g2
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

g
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

r422
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6efbadda0c70ffd012b381cbefdab78

Code Sign

43:27:b1:36:9b:48:0c:98:4c:81:13:09:14:6f:7c:57Certificate

Extended Key Usages

75:11:f6:41:cb:78:33:e2:61:39:b5:f6:84:36:6c:45:31:12:c5:d1Signer

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

Sections

.text Size: 16KB - Virtual size: 15KB

r421 Size: 512B - Virtual size: 1B

r42 Size: 512B - Virtual size: 1B

.rdata2 Size: 98KB - Virtual size: 97KB

.rdata Size: 196KB - Virtual size: 195KB

.data Size: 8KB - Virtual size: 8KB

r4 Size: 3KB - Virtual size: 2KB

g2 Size: 512B - Virtual size: 1B

g Size: 244KB - Virtual size: 244KB

r422 Size: 512B - Virtual size: 1B

.rsrc Size: 106KB - Virtual size: 105KB

43:27:b1:36:9b:48:0c:98:4c:81:13:09:14:6f:7c:57
Certificate

75:11:f6:41:cb:78:33:e2:61:39:b5:f6:84:36:6c:45:31:12:c5:d1
Signer

.text
Size: 16KB - Virtual size: 15KB

r421
Size: 512B - Virtual size: 1B

r42
Size: 512B - Virtual size: 1B

.rdata2
Size: 98KB - Virtual size: 97KB

.rdata
Size: 196KB - Virtual size: 195KB

.data
Size: 8KB - Virtual size: 8KB

r4
Size: 3KB - Virtual size: 2KB

g2
Size: 512B - Virtual size: 1B

g
Size: 244KB - Virtual size: 244KB

r422
Size: 512B - Virtual size: 1B

.rsrc
Size: 106KB - Virtual size: 105KB