22c70c88c452e4197afa8a045426e25500553d0235b02227793ebfb3b82c4bf8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22c70c88c452e4197afa8a045426e25500553d0235b02227793ebfb3b82c4bf8
Size

2.2MB
MD5

3ee4d7c2ed37da9de5dced3e9a34c340
SHA1

3b9c94fab472ed26fc6f4f7b17839b1bc43d098a
SHA256

22c70c88c452e4197afa8a045426e25500553d0235b02227793ebfb3b82c4bf8
SHA512

797bcaeb5fa21eb11fdeeee8642b31a9986d4e1477bea0688ff1c622cc338455f13d5a76ab7a7bf1979daee07051d08f4a1b6035f4eaa9b294065f559f193847
SSDEEP

49152:+eF1xn14/VjvdLD9OCYaFzVoKO9tStcYgbL25syRjQ+U:j1xn1+Dlrkxr2+Qs+U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22c70c88c452e4197afa8a045426e25500553d0235b02227793ebfb3b82c4bf8

Files

22c70c88c452e4197afa8a045426e25500553d0235b02227793ebfb3b82c4bf8
.exe windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

Start

Sections

Size: 591KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uefvnflr
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bdfagpzl
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE