b2d86cc7f95fe1a49b60e658233d46a5fb5c31e73509d4514339f1326c6c25a1

Sharing

Copy URL

Twitter E-mail

General

Target

b2d86cc7f95fe1a49b60e658233d46a5fb5c31e73509d4514339f1326c6c25a1
Size

1.9MB
MD5

419224217f8d418e6338c1d3a9c09d38
SHA1

184aa4423893efd31d95c070708d6a164f6d7b88
SHA256

b2d86cc7f95fe1a49b60e658233d46a5fb5c31e73509d4514339f1326c6c25a1
SHA512

b28fd06f8c6f36467df289327cb13ac72c0cfc49056a9d4aa27acebdb4fcd2e13b1b1c08bcd6dafd95f55b6a1a81cf0e60128baf7731485017f10e676677fcdf
SSDEEP

49152:oXTeci9Sb2nMUVyUxQ2XBzCmWqXBAseBBLH2vSIClDL5z7IVqV/N:KTec9UT3BOpqXOhBdIiDL5z7IVqz

Score

1^/10

Malware Config

Signatures

Files

b2d86cc7f95fe1a49b60e658233d46a5fb5c31e73509d4514339f1326c6c25a1
.zip
9491700097082_20250101_20250211_40488.vhd
.vhd
$RECYCLE.BIN/S-1-5-21-51376216-3410785576-3819582845-500/desktop.ini
9491700097082_20250101_20250211_40488.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

54:98:d2:d1:d4:5b:19:95:48:13:79:c8:11:c0:87:99
Certificate

Issuer

CN=Microsoft Identity Verification Root Certificate Authority 2020,O=Microsoft Corporation,C=US

Not Before

16-04-2020 18:36

Not After

16-04-2045 18:44

Subject

CN=Microsoft Identity Verification Root Certificate Authority 2020,O=Microsoft Corporation,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:d0:01:fa:44:27:80:35:38:a4:52:00:00:00:00:d0:01
Certificate

Issuer

CN=Microsoft ID Verified CS AOC CA 01,O=Microsoft Corporation,C=US

Not Before

05-03-2024 04:25

Not After

08-03-2024 04:25

Subject

CN=DOTPDN LLC,O=DOTPDN LLC,L=Kirkland,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

33:00:00:d0:01:fa:44:27:80:35:38:a4:52:00:00:00:00:d0:01
Certificate

Issuer

CN=Microsoft ID Verified CS AOC CA 01,O=Microsoft Corporation,C=US

Not Before

05-03-2024 04:25

Not After

08-03-2024 04:25

Subject

CN=DOTPDN LLC,O=DOTPDN LLC,L=Kirkland,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

33:00:00:00:07:37:8c:5b:a1:d9:5b:8c:d4:00:00:00:00:00:07
Certificate

Issuer

CN=Microsoft ID Verified Code Signing PCA 2021,O=Microsoft Corporation,C=US

Not Before

13-04-2021 17:31

Not After

13-04-2026 17:31

Subject

CN=Microsoft ID Verified CS AOC CA 01,O=Microsoft Corporation,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:07:87:a3:34:a3:7b:a5:8e:1c:00:00:00:00:00:07
Certificate

Issuer

CN=Microsoft Identity Verification Root Certificate Authority 2020,O=Microsoft Corporation,C=US

Not Before

01-04-2021 20:05

Not After

01-04-2036 20:15

Subject

CN=Microsoft ID Verified Code Signing PCA 2021,O=Microsoft Corporation,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:05:e5:cf:0f:ff:66:2e:c9:87:00:00:00:00:00:05
Certificate

Issuer

CN=Microsoft Identity Verification Root Certificate Authority 2020,O=Microsoft Corporation,C=US

Not Before

19-11-2020 20:32

Not After

19-11-2035 20:42

Subject

CN=Microsoft Public RSA Timestamping CA 2020,O=Microsoft Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:36:d9:36:1c:89:0a:2e:6b:81:00:00:00:00:00:36
Certificate

Issuer

CN=Microsoft Public RSA Timestamping CA 2020,O=Microsoft Corporation,C=US

Not Before

15-02-2024 20:35

Not After

15-02-2025 20:35

Subject

CN=Microsoft Public RSA Time Stamping Authority,OU=Microsoft America Operations+OU=Thales TSS ESN:45D6-96C5-5E63,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

55:dd:2e:aa:fe:f1:8f:1e:a5:62:60:d8:23:76:67:7d:35:b0:aa:5d:73:55:df:ce:8f:86:f4:6a:2f:85:c9:d4
Signer

Actual PE Digest

55:dd:2e:aa:fe:f1:8f:1e:a5:62:60:d8:23:76:67:7d:35:b0:aa:5d:73:55:df:ce:8f:86:f4:6a:2f:85:c9:d4

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 424KB - Virtual size: 423KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System Volume Information/IndexerVolumeGuid
System Volume Information/WPSettings.dat

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

54:98:d2:d1:d4:5b:19:95:48:13:79:c8:11:c0:87:99Certificate

Key Usages

33:00:00:d0:01:fa:44:27:80:35:38:a4:52:00:00:00:00:d0:01Certificate

Extended Key Usages

Key Usages

33:00:00:d0:01:fa:44:27:80:35:38:a4:52:00:00:00:00:d0:01Certificate

Extended Key Usages

Key Usages

33:00:00:00:07:37:8c:5b:a1:d9:5b:8c:d4:00:00:00:00:00:07Certificate

Key Usages

33:00:00:00:07:87:a3:34:a3:7b:a5:8e:1c:00:00:00:00:00:07Certificate

Key Usages

33:00:00:00:05:e5:cf:0f:ff:66:2e:c9:87:00:00:00:00:00:05Certificate

Extended Key Usages

Key Usages

33:00:00:00:36:d9:36:1c:89:0a:2e:6b:81:00:00:00:00:00:36Certificate

Extended Key Usages

Key Usages

55:dd:2e:aa:fe:f1:8f:1e:a5:62:60:d8:23:76:67:7d:35:b0:aa:5d:73:55:df:ce:8f:86:f4:6a:2f:85:c9:d4Signer

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rsrc Size: 424KB - Virtual size: 423KB

.reloc Size: 512B - Virtual size: 12B

54:98:d2:d1:d4:5b:19:95:48:13:79:c8:11:c0:87:99
Certificate

33:00:00:d0:01:fa:44:27:80:35:38:a4:52:00:00:00:00:d0:01
Certificate

33:00:00:d0:01:fa:44:27:80:35:38:a4:52:00:00:00:00:d0:01
Certificate

33:00:00:00:07:37:8c:5b:a1:d9:5b:8c:d4:00:00:00:00:00:07
Certificate

33:00:00:00:07:87:a3:34:a3:7b:a5:8e:1c:00:00:00:00:00:07
Certificate

33:00:00:00:05:e5:cf:0f:ff:66:2e:c9:87:00:00:00:00:00:05
Certificate

33:00:00:00:36:d9:36:1c:89:0a:2e:6b:81:00:00:00:00:00:36
Certificate

55:dd:2e:aa:fe:f1:8f:1e:a5:62:60:d8:23:76:67:7d:35:b0:aa:5d:73:55:df:ce:8f:86:f4:6a:2f:85:c9:d4
Signer

.text
Size: 1.8MB - Virtual size: 1.8MB

.rsrc
Size: 424KB - Virtual size: 423KB

.reloc
Size: 512B - Virtual size: 12B