22d208b1dac5bc351ffa464813dd6744 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22d208b1dac5bc351ffa464813dd6744
Size

7KB
MD5

22d208b1dac5bc351ffa464813dd6744
SHA1

ab3ae202eeade596b4ed5775e45bf6e4f0fb8e32
SHA256

1dfd8f05643c65aee71129150e1910a51dba0ccba79f2cc06b334c874bdef021
SHA512

81cd3e494651419997a3d909d3e5d49726f8034e59a780de448fc8e470a5548e7108de845b2ea281ae8887e3a20a5e6a0c4ce133a7a64a4e03f39006c66cba39
SSDEEP

192:V4NyJHoFRs7crkr/OmnG8C5YK06tnxPqdSvz+KYpC37H:VugHOmXr/vb4xxHL+KYpC37H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22d208b1dac5bc351ffa464813dd6744

Files

22d208b1dac5bc351ffa464813dd6744
.exe windows:5 windows x86 arch:x86

1191a8761c4a6dc9d2875577dc8272cf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

advapi32

CryptHashData

ntdll

_wtoi

ole32

CreateStreamOnHGlobal

user32

wsprintfA

winhttp

WinHttpOpen

Sections

.
Size: 5KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE