22efa8cc1cc4d6499e5453c8bd0d69c6

Sharing

Copy URL Twitter E-mail

General

Target

22efa8cc1cc4d6499e5453c8bd0d69c6
Size

195KB
MD5

22efa8cc1cc4d6499e5453c8bd0d69c6
SHA1

2c087395be01207b64ef7dfcb8a534aa043d5ba2
SHA256

9b26cd48c10ab915b02807f040f093182a40f9966e29e160874958b805107775
SHA512

9b076419ac78b39d612a7f6ed10c670cdf0820dac2ae79ed2577baceaabfee2dd1f70fa1e99e17c454b3552dc4ba6a01e558e20893085bfa938ede014ec7e6c8
SSDEEP

3072:U/syd2jL6ukgiLnp2fs1a7V0g7Pjflc1:4u34ncfs1aqs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22efa8cc1cc4d6499e5453c8bd0d69c6

Files

22efa8cc1cc4d6499e5453c8bd0d69c6
.dll windows:5 windows x86 arch:x86

ede810ce1d556eadd0f6e5b05e3c8541

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
lstrcatW
GetWindowsDirectoryW
VirtualAllocEx
CreateFileW

user32

DefWindowProcA
PostQuitMessage
EndPaint
BeginPaint
LoadIconA

gdi32

XLATEOBJ_cGetPalette
SetViewportOrgEx
SetTextCharacterExtra
SetTextAlign
SetSystemPaletteUse
SetPolyFillMode
SetPixelV
SetPixelFormat
AnimatePalette
CLIPOBJ_ppoGetPath
CloseEnhMetaFile
CopyEnhMetaFileW
CopyMetaFileW
CreateCompatibleDC
CreateDCW
CreateDIBitmap
CreateDiscardableBitmap
CreateFontIndirectExA
CreateICW
CreatePolyPolygonRgn
CreatePolygonRgn
DPtoLP
DeleteColorSpace
DeviceCapabilitiesExW
EnableEUDC
EndDoc
EngAcquireSemaphore
EngCheckAbort
EngCreateClip
EngCreateDeviceBitmap
EngCreateDeviceSurface
EngCreatePalette
EngDeletePath
EngFindResource
EngGetDriverName
EngGradientFill
EngQueryLocalTime
EngReleaseSemaphore
EngTextOut
EnumEnhMetaFile
EudcLoadLinkW
FONTOBJ_cGetGlyphs
FONTOBJ_pxoGetXform
FrameRgn
GdiComment
GdiConvertEnhMetaFile
GdiConvertMetaFilePict
GdiCreateLocalEnhMetaFile
GdiEntry11
GdiEntry2
GdiGetBatchLimit
GdiGetPageHandle
GdiInitializeLanguagePack
GdiPlayDCScript
GdiPlayJournal
GdiSetBatchLimit
GdiSetServerAttr
GdiSwapBuffers
GetBoundsRect
GetCharWidthA
GetColorAdjustment
GetEnhMetaFileDescriptionA
GetEnhMetaFileDescriptionW
GetEnhMetaFilePaletteEntries
GetFontData
GetFontLanguageInfo
GetFontUnicodeRanges
GetMapMode
GetMiterLimit
GetObjectA
GetPolyFillMode
GetROP2
GetStretchBltMode
HT_Get8BPPFormatPalette
InvertRgn
LPtoDP
LineTo
OffsetRgn
PATHOBJ_vEnumStart
PlayEnhMetaFileRecord
PolyBezier
PolyDraw
PolyPolyline
PolyTextOutW
PtVisible
RemoveFontResourceExW
ScaleViewportExtEx
SelectClipRgn
SetBrushOrgEx
SetEnhMetaFileBits
SetFontEnumeration
SetMapperFlags

advapi32

RegOpenKeyExW
RegOpenKeyW

Sections

.text
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ede810ce1d556eadd0f6e5b05e3c8541

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 174KB - Virtual size: 174KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 732B

.data2 Size: 10KB - Virtual size: 9KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 174KB - Virtual size: 174KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 732B

.data2
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 1KB - Virtual size: 1KB