227c97f24f1ce035b91cbd8b890d806d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

227c97f24f1ce035b91cbd8b890d806d
Size

50KB
MD5

227c97f24f1ce035b91cbd8b890d806d
SHA1

d23076e758d0ee34593548838eeeaa33f2fabc48
SHA256

75a7e3b3f35c2c13b79af6ece199c05df3e87505472406980661a933fc459cf1
SHA512

89b22483dba94460831c1486664c54ea3ecf829461c77dc8d139d501af37e519a02455e1b4c89aebf64d371760422782a76f9a11ee6547862733e00a596334aa
SSDEEP

768:A76OX83rSplAkRV2oGt6LGetSQ8ZKGWnm56CyeG7qv4k9cdoi0Bk:A2a86AsSt6K8SnZJ0foG0u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
227c97f24f1ce035b91cbd8b890d806d

Files

227c97f24f1ce035b91cbd8b890d806d
.exe windows:5 windows x86 arch:x86

f360b83cbc1ad9951c753ca1e514e074

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptGetHashParam

shlwapi

PathFileExistsW
PathMatchSpecW
StrCmpNIA
StrCmpNIW
StrStrW
wnsprintfA
wnsprintfW
wvnsprintfA
wvnsprintfW

user32

CharUpperW
CloseDesktop
CloseWindowStation
DrawIcon
ExitWindowsEx
GetClassNameA
GetClipboardData
GetIconInfo
GetKeyboardState
MsgWaitForMultipleObjects
SetProcessWindowStation
ToUnicode

Sections

.sjwh
Size: 40KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cxev
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bwn
Size: 5KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ