22b1c2f5d21aba017413a6c48cb07f02 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22b1c2f5d21aba017413a6c48cb07f02
Size

99KB
MD5

22b1c2f5d21aba017413a6c48cb07f02
SHA1

6e9a707d08abf9342fbe49991769b531445c32e3
SHA256

658dd92e0f58d8a88d4f56c95e797dff3afd8b0db0e3a1748cdf76ddc72fe0fc
SHA512

10e5ec352926f1e7d8f8f265d237b2220a3f42895189ec8a08a1438de6cfabd219cb2c3ee0e84d3b00c046a452f9831f3c36bf6b5777c0cfe1cb28c7f12611c0
SSDEEP

3072:gUECgI5DTxcQ1mYdoXCfJ4tKUJTdFeAZSCBu:gUBlWQzuCh4tK6LrZSG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22b1c2f5d21aba017413a6c48cb07f02

Files

22b1c2f5d21aba017413a6c48cb07f02
.exe windows:4 windows x86 arch:x86

7b31908bcc71ba45ec3e72b9efac92f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
OpenProcess
SetLastError
lstrlenA
lstrcpyA
GetModuleHandleA
GetStartupInfoA

msvcrt

calloc
free
rand
memmove
_exit
_XcptFilter
exit
time
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
srand
_acmdln

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 668B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ