22e17ef76c9a2726a3791e23b20dfc14

General

Target

22e17ef76c9a2726a3791e23b20dfc14
Size

3.4MB
MD5

22e17ef76c9a2726a3791e23b20dfc14
SHA1

9ef625b93f2a438cab5f7f9a4e1dcbf794f7be4f
SHA256

b1c9f011c716e3a8adb1d3faa1353edfa8d382bcd94218cdcdb5a8d87e9b1439
SHA512

36ec6f00e5386cd5f86a73addd6b3d24d62ee3585521e89998c5827905d170aa8f571f95eed947803dbbd50975a08d388c47dd07a751831d7e8e643d2775da36
SSDEEP

98304:MEAbHRyVrfeVOgkBzG2MI3Mgmqk5blgpZdxY:MEmMlfa062M6MgsiZ7Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22e17ef76c9a2726a3791e23b20dfc14

Files

22e17ef76c9a2726a3791e23b20dfc14
.exe windows:4 windows x86 arch:x86

502f2570fc28fb41634b8a335ed29247

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentThreadId
GetCurrentProcess
GetModuleHandleW
QueryPerformanceCounter
GetProcAddress
FreeLibrary
HeapFree
LocalFree
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
GetProcessHeap
CreateFileW
ExitProcess
GetStdHandle
ReadFile
RaiseException
SetEvent
FormatMessageW
TlsGetValue
TlsSetValue
CreateEventW
HeapSetInformation
HeapSize
WriteConsoleW
LoadLibraryExW
TlsFree
CompareStringW
GetStringTypeW
RtlUnwind
LCMapStringW
FreeEnvironmentStringsW
IsValidCodePage
GetConsoleCP
LocalAlloc
DecodePointer
SetEndOfFile
ResetEvent
ReleaseMutex
OutputDebugStringW
GetFileSize
LoadLibraryA
GetLocaleInfoW
CreateDirectoryW
LoadResource
CreateProcessW

user32

LoadStringW
DispatchMessageW
ShowWindow
PostQuitMessage
GetMessageW
GetSystemMetrics
GetWindowRect
PostMessageW
EnableWindow
IsWindow
LoadCursorW
EndDialog
SetFocus
BeginPaint
SetCursor
KillTimer
InvalidateRect
EnableMenuItem
GetWindow
GetWindowTextW
SystemParametersInfoW
GetKeyState
MessageBoxA
ClientToScreen

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

502f2570fc28fb41634b8a335ed29247

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data Size: - Virtual size: 612KB

.idata Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: - Virtual size: 612KB

.idata
Size: 2KB - Virtual size: 1KB