c22162d858b32f9e5cb2b89f7cedf2ef

General

Target

c22162d858b32f9e5cb2b89f7cedf2ef
Size

190KB
MD5

c22162d858b32f9e5cb2b89f7cedf2ef
SHA1

5515e047bbdca50817c058306e648b51b9c2634f
SHA256

e2b2e3ad160482a0eacf7c9c62649345d0566b073e3b2ec41082833ea5e3c665
SHA512

bb3603a1cbf0ff4a11368e06ad1686dbaa68f9d2a6fca583ebc79d7edf02ffdf2599e1a148f1ee960bd6617139f2bdcaaf7287e4379d82cca5bd7e155aa62b02
SSDEEP

3072:+3pNioJuS9Qx5UKaM7efAbU2ugUbqnsrz+DgO2ef4UqW8GBEshjm/b5o6TYPLERY:+5koAJ5U47e4I2ugSUsryDgBeqT+pNw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c22162d858b32f9e5cb2b89f7cedf2ef

Files

c22162d858b32f9e5cb2b89f7cedf2ef
.exe windows:4 windows x86 arch:x86

6e522bc10a9b17f1f4da1caf5a224205

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

rpcrt4

UuidCreate

advapi32

RegCreateKeyExW
RegCloseKey
RegSetValueExW

kernel32

ReadFile
GetCommandLineA
WriteConsoleA
SetEndOfFile
GetThreadPriority
EnterCriticalSection
GetProcAddress
HeapReAlloc
UnhandledExceptionFilter
Sleep
GetCurrentDirectoryW
DeleteCriticalSection
WriteFile
GetLocaleInfoW
GetConsoleOutputCP
PurgeComm
InterlockedIncrement
TerminateProcess
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
SetStdHandle
GetUserDefaultLCID
GetCurrentThreadId
EnumResourceNamesA
GetModuleHandleA
LeaveCriticalSection
WideCharToMultiByte
GetModuleFileNameW
LCMapStringW
CloseHandle
InterlockedDecrement
GetCurrentProcess
CreateFileA
InitializeCriticalSection
ExitProcess
LCMapStringA
HeapFree
GetVersionExA
HeapAlloc
GlobalAlloc
GetLastError
IsDebuggerPresent
WriteConsoleW
RtlUnwind
GetProcessHeap
HeapSize
GetFullPathNameW
ExitProcess
SetUnhandledExceptionFilter
MultiByteToWideChar
GetCPInfo
RaiseException
GetFullPathNameA

user32

GetClassLongA
MessageBoxW

shell32

SHFileOperationW
SHCreateDirectoryExW
SHGetFolderPathW

Sections

.text
Size: 159KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 512B - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e522bc10a9b17f1f4da1caf5a224205

Headers

File Characteristics

Imports

rpcrt4

advapi32

kernel32

user32

shell32

Sections

.text Size: 159KB - Virtual size: 158KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 27KB - Virtual size: 27KB

.crt Size: 512B - Virtual size: 88KB

.text
Size: 159KB - Virtual size: 158KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 27KB - Virtual size: 27KB

.crt
Size: 512B - Virtual size: 88KB