22e20e92b6db4840ff91ffd8249d0400 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22e20e92b6db4840ff91ffd8249d0400
Size

2.1MB
MD5

22e20e92b6db4840ff91ffd8249d0400
SHA1

423c129810efbc83d0890b30a2f8f21ad891f61c
SHA256

e9f59390bd0a968f10ff7f2a37847f5bbfe8085b0b985b2a4bd221e34f2bc225
SHA512

806f7fe43c2c2920e0b50f3fba611704adc0065b274c32520a3c8fb5c235f5faa3a7cb57974f61b8a6aa1b83d1bb1820a105f157ffc4fe9ba164a6a95a944d89
SSDEEP

49152:8PL15EIqS1e6q3FmKbtub9q9JSSgVTdvnzvLnJ4e:8PJ5EIqKe6q3oKbtuhqYVVvLn6e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22e20e92b6db4840ff91ffd8249d0400

Files

22e20e92b6db4840ff91ffd8249d0400
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

udfpfmbm
Size: - Virtual size: 360KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.v-lizer
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8co4.1.p
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pjsxvrzi
Size: - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

x0u5eoa9
Size: 281KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE