222c5e60f850cd8953ba2f4a6690826ef124b7c656979986fd69bb584ecf461eN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

222c5e60f850cd8953ba2f4a6690826ef124b7c656979986fd69bb584ecf461eN
Size

136KB
MD5

f3eddf701b1636d15e2e11050da15a40
SHA1

b40b1a17ffd59b610ec94001ea29772b0f232703
SHA256

222c5e60f850cd8953ba2f4a6690826ef124b7c656979986fd69bb584ecf461e
SHA512

b355e70cae2023ca1271edce5e0fec6ef1cf9b0cc8f724e793a9cf8805de5fe115ad3434a7243f6a713e93ebbad7fb970b22bc4d5bc95951b16ae15c2899870b
SSDEEP

3072:hWbAAPYNqXUF6yGp/FYeHQ8btDa4Px0moYvw3I1k0lzvqw7:hWbwNqXUFS2ehtDjPtvw3INP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
222c5e60f850cd8953ba2f4a6690826ef124b7c656979986fd69bb584ecf461eN

Files

222c5e60f850cd8953ba2f4a6690826ef124b7c656979986fd69bb584ecf461eN
.exe windows:4 windows x86 arch:x86

e304217fc16c011615a0ec22783cbfae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcatA
InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
SearchPathA
ResumeThread
WriteProcessMemory
GetPrivateProfileSectionA
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW

user32

DefWindowProcA
AdjustWindowRectEx

Sections

0
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 4KB - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 48KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE