b22f3363779c88c85d51e5eb02275f40N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b22f3363779c88c85d51e5eb02275f40N
Size

120KB
MD5

b22f3363779c88c85d51e5eb02275f40
SHA1

bd1e0e00692e4e8fb76dc36c5c800931cf8fab16
SHA256

19995af938954483a4c6b1980a5868a46b788d0b7860b8a6cb44dd7b6becbc41
SHA512

ea319c97034b85c9857e802a0f163660b8877ace58fafa0e536fe7cde1db0df83aecffd0fe62a106599ad740dab19e2f5b1436d1739852bff7d48e5d6bc486de
SSDEEP

3072:pazqN107/HkIPDxrM4J7Vp9lf3bVdBo58dD2bq:pP253JRNfvIED2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b22f3363779c88c85d51e5eb02275f40N

Files

b22f3363779c88c85d51e5eb02275f40N
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ