22f92647804cb24c6578759c4ea4fbbb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22f92647804cb24c6578759c4ea4fbbb
Size

7KB
MD5

22f92647804cb24c6578759c4ea4fbbb
SHA1

10a55aaead220fa232f39a738392070fc5cdef63
SHA256

679032da7009a31f2ce3f37ec8c0a9b09f38fa807d3d40e5c77c0444cffc6f10
SHA512

d2dd0a2438eda4cb1aa4ed0c50f1c14fcafdd35124b2dcbcb9c13a93420d4ae0ae043b30efbd42fa457d1413abb9a8a99b33f127bdb21fdb98fcc4d8d8c80bd5
SSDEEP

96:6QdwgNRORYv8/5i3yAT/XWn2PmqIySG+1YAi/ePBvlV4ZsxMySgaZxUzCCORbpzP:z+L/5izfWWdF/7AiGiKt+xUpkq8l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22f92647804cb24c6578759c4ea4fbbb

Files

22f92647804cb24c6578759c4ea4fbbb
.exe windows:4 windows x86 arch:x86

119ba01abad812c4a461368344bcd6cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleHandleA
GetProcAddress
LoadLibraryA
RtlZeroMemory
VirtualAlloc
VirtualFree
VirtualProtect

Sections

.pepsi
Size: 5KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE