6b22b8e2128e58d1a822186cdcd77d8a | Triage

Sharing

General

Target

6b22b8e2128e58d1a822186cdcd77d8a
Size

166KB
MD5

6b22b8e2128e58d1a822186cdcd77d8a
SHA1

40c05efd925c39d150ab1cae0a4914ec6f3d5f5d
SHA256

c6e3b3b6d74232268e9f2ee8d9aadc93387b1d5296c030f0a6c0371e7a9012a2
SHA512

aed5a47f643e0db26ac2cb8af06bef32e16a34746b1242fdd4f6a29c5913be6b3cd8b60a9421afd6624613789ece06b39cae6c1987ebd8a1529cd1e21446f9b5
SSDEEP

3072:fESYsl7/rY841j4e0QtFwAZO8i3w552WsmsvUjzH/eN6Nj0s+U21:fE6V/20eFtiAZMG2WsKf/eMNj0s+U4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6b22b8e2128e58d1a822186cdcd77d8a

Files

6b22b8e2128e58d1a822186cdcd77d8a
.exe windows:1 windows x86 arch:x86

5a498eee87e4d89512a84502f500181f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA

Sections

CODE
Size: 30KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Thor
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE