c822a0b8352061417123bdb5c6c7ec2e | Triage

Sharing

General

Target

c822a0b8352061417123bdb5c6c7ec2e
Size

43KB
MD5

c822a0b8352061417123bdb5c6c7ec2e
SHA1

5d23d4db903e05905371f0e06159bc9c041589ea
SHA256

c500756a1176fdfeded0f76b687f7f6582775485cd6db9eba04f8c01a1faad18
SHA512

20f1b4af8145f7de929561f98f3ad48de1d180fce08987940aff81bd0c9d2363ecbc4e5410cdace36e3acb54d73eea686e0baac742970661f0ee0e37ae50e3e7
SSDEEP

192:PCo1bl+LSYxSxUGcft74agf1jC5EmhflNCVvuT8zZ3SYxFf2e01F4:V1bl+eTcft8agf10TfiVA8f2e01F4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c822a0b8352061417123bdb5c6c7ec2e

Files

c822a0b8352061417123bdb5c6c7ec2e
.exe windows:4 windows x86 arch:x86

82152677c79819cbdb53e4142be743af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
UnmapViewOfFile
WriteFile
lstrcatA
GetTickCount
GetTempPathA
MapViewOfFile
CreateFileMappingA
CloseHandle
ExitProcess
SetFilePointer
CreateFileA
GetModuleFileNameA

user32

wsprintfA

shell32

ShellExecuteA

Sections

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ