22d550dd7b593414a5c21982dea18075 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22d550dd7b593414a5c21982dea18075
Size

146KB
MD5

22d550dd7b593414a5c21982dea18075
SHA1

428253c83dbf518d6ac7fbb184e70482c5a31ce5
SHA256

47f8dbebdb5f4688444b514d4d1c3f630d029f0f29dd158535b768a0bc6741a3
SHA512

4ebfd9a5be7d91a2f3809f44c0704829851148fa874cedc4db112afd163e74a4d2537a6ffcfd7a8ba2e5663b3f71a35663c5e41a52e99c9d73044e80ac11d9de
SSDEEP

768:o4ECeDIMqRF4rD4pZeoaXKfHQMBv4Mmh590jd35VqeI60A9XsyVZatT:omcURqwen6fHD7NjdJo6iM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22d550dd7b593414a5c21982dea18075

Files

22d550dd7b593414a5c21982dea18075
.exe windows:5 windows x86 arch:x86

bb5b00904006cd3b801321e956357654

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
ReadFile
GetStdHandle
ExitProcess

user32

GetScrollPos
GetDlgItem
AlignRects
DrawTextA
InsertMenuA

advapi32

RegEnumKeyExW
RegDeleteKeyA

Sections

.e7c0f
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.689d
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gff89
Size: 57KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.7ag53
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fh07
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ