22f9112f8c9a9ff79da735e002fc60ea

General

Target

22f9112f8c9a9ff79da735e002fc60ea
Size

64KB
MD5

22f9112f8c9a9ff79da735e002fc60ea
SHA1

1175d7a0b55e3019ac521f6d1e70675d5b50bab6
SHA256

e6868442c575433d3e33f79bc25111519ead2e26f27cce4a5c9379eda3214207
SHA512

55ee2a8d111300330f9f51d57430dff052e9b193d7b794543c3badd43949be25aa9fa744c79163cb6aacb586fd36d0cf53c6b7ee2dbe7bbca22f3e2ec7d628c9
SSDEEP

1536:LYP6DpeB6vrhNNCUBcc+oprBs3OBDWPunOCzw:w6teB67NJD2GOCzw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22f9112f8c9a9ff79da735e002fc60ea

Files

22f9112f8c9a9ff79da735e002fc60ea
.exe windows:4 windows x86 arch:x86

fd94c1aae946ab1fe84c0543e9203e65

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
TerminateThread
MultiByteToWideChar
SetFilePointer
ResetEvent
DuplicateHandle
LoadLibraryA
SetEvent
FindNextFileW
SetCurrentDirectoryW
LockResource
SuspendThread
lstrcpyW
GetCurrentThreadId
CreateWaitableTimerW
CreateThread
GetFileAttributesW
WriteFile
FindFirstFileW
GetCurrentProcess
GlobalUnlock
FindClose
CloseHandle
MulDiv
GetModuleFileNameW
LoadResource
QueryDosDeviceW
InterlockedIncrement
FileTimeToSystemTime
GetProcAddress
GlobalDeleteAtom

user32

OffsetRect
SetWindowTextW
DestroyMenu
LoadImageW
SystemParametersInfoW
LoadIconW
GetSysColor
SetWindowPos
IsDlgButtonChecked
GetWindowThreadProcessId
LoadStringW
SetLayeredWindowAttributes
PostQuitMessage
GetMessageW
CreatePopupMenu
InvalidateRect
ReleaseDC
SendMessageW
DialogBoxParamW
RegisterClassExW
DestroyIcon
GetClassNameW

gdi32

DPtoLP
SetBkMode
CreateBitmap
SelectObject
SetTextColor
DeleteDC
CreateDCW
MoveToEx

advapi32

RegDeleteValueW
RegSetValueExW
SetSecurityDescriptorDacl

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 964B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fd94c1aae946ab1fe84c0543e9203e65

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 964B

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 964B