22093660ba1668a03e905d1fa3154b96 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22093660ba1668a03e905d1fa3154b96
Size

28KB
MD5

22093660ba1668a03e905d1fa3154b96
SHA1

4ad9168940912199d47015ad9de3ad3a90902c41
SHA256

3a8e942e3fc76e7801d6aacd326789b35bb09031b3fa46b709239d5605408057
SHA512

2b96f876862cfc1e13f34fb4c268d34ca56d986eec1b39e8281bbb504b82e9cd8f6c966cc66ba9c1974665205b3837246aeac3fa0f409380788f28aef4e27962
SSDEEP

384:fb5Kba+XWtkwp9jJTn+iXeylw3Rs+/hUiOosZM4lcpz1pZN1R2y:fcb/ZYDT+olWs+CosekcpZpZvR2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22093660ba1668a03e905d1fa3154b96

Files

22093660ba1668a03e905d1fa3154b96
.exe windows:1 windows x86 arch:x86

232c016b1f294a86b687e35475f4c56e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_atodbl
__unDNameEx
_clearfp
_control87
_ctime64

shell32

SHGetDiskFreeSpaceExW
SHGetUnreadMailCountW
SHFileOperationA
SheChangeDirA
SheGetPathOffsetW
ShellHookProc

Sections

.text
Size: 14KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE