22ce548c9f67682cf49c35620d85f2cc

Sharing

Copy URL Twitter E-mail

General

Target

22ce548c9f67682cf49c35620d85f2cc
Size

291KB
MD5

22ce548c9f67682cf49c35620d85f2cc
SHA1

c3cac28e908771a49f025ef20f7ce85c31af1d29
SHA256

72cb18f1b15619edb56a2fa8e3b7ff6ba6b04696016cd7c2f4fae28460a4edca
SHA512

21650925f14e30364b90167c39a01977e25e04f1acb5a8f70b85ca47d03dff20731bb3644b0ff9e431c56794f80d04eddde8c8a3c77d620472566cbae09e158c
SSDEEP

6144:dhMbmrmgQUh8WguWsAv7eS6W7I4sP/8DB+L/DtNHH:dhMSrmt+8Df2GIVf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22ce548c9f67682cf49c35620d85f2cc

Files

22ce548c9f67682cf49c35620d85f2cc
.exe windows:4 windows x86 arch:x86

e2334c17a236812e31585d55ffe7657d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
GetKeyboardLayoutNameA
SetMenuItemInfoA
CreateWindowExA
DrawTextA
MessageBoxW
RegisterClassA
RegisterClassExA
SwapMouseButton
WINNLSEnableIME
CloseClipboard
SetClipboardData

comctl32

ImageList_SetBkColor
DrawStatusTextA
InitCommonControlsEx
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_Destroy
MakeDragList
ImageList_SetOverlayImage
GetEffectiveClientRect

kernel32

LoadLibraryA
TlsSetValue
LeaveCriticalSection
SetUnhandledExceptionFilter
InterlockedIncrement
WriteFile
QueryPerformanceCounter
GetSystemTimeAsFileTime
HeapAlloc
VirtualFree
CreateFileA
GetCurrentProcessId
GetStringTypeA
SetHandleCount
DeleteCriticalSection
ReadFile
GetModuleFileNameW
GetConsoleOutputCP
GetTimeZoneInformation
WriteConsoleW
GetProcAddress
OpenMutexA
GetVersionExA
GetDateFormatA
GetLocaleInfoW
TlsAlloc
GetFileTime
GetStringTypeW
GetEnvironmentStringsW
GetCurrentThreadId
SetConsoleCtrlHandler
FlushFileBuffers
TerminateProcess
FreeEnvironmentStringsW
VirtualAlloc
Sleep
UnhandledExceptionFilter
GetCurrentProcess
GetCPInfo
SetStdHandle
GetLastError
IsValidCodePage
EnterCriticalSection
FreeLibrary
IsDebuggerPresent
EnumSystemLocalesA
GetOEMCP
GetProcessHeap
InitializeCriticalSection
CompareStringA
CreateMutexW
GetCurrentThread
InterlockedDecrement
TlsFree
GetEnvironmentStrings
GetCommandLineW
GetStartupInfoA
GetFileType
GetModuleHandleA
MultiByteToWideChar
GetTimeFormatA
HeapCreate
GetConsoleMode
SetLastError
GetTickCount
HeapDestroy
GetACP
TlsGetValue
GetUserDefaultLCID
CloseHandle
EnumSystemCodePagesA
SetEnvironmentVariableA
GetConsoleCP
HeapReAlloc
HeapSize
CreateMutexA
FreeEnvironmentStringsA
LCMapStringW
WriteConsoleA
LCMapStringA
CompareStringW
GetLocaleInfoA
GetCommandLineA
RtlUnwind
SetFilePointer
GetModuleFileNameA
ExitProcess
GetStdHandle
GetStartupInfoW
VirtualQuery
HeapFree
IsValidLocale
WideCharToMultiByte
InterlockedExchange

Sections

.text
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2334c17a236812e31585d55ffe7657d

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 176KB - Virtual size: 176KB

.rdata Size: 13KB - Virtual size: 24KB

.data Size: 89KB - Virtual size: 89KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 176KB - Virtual size: 176KB

.rdata
Size: 13KB - Virtual size: 24KB

.data
Size: 89KB - Virtual size: 89KB

.rsrc
Size: 11KB - Virtual size: 11KB