keepass2john[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

keepass2john.exe
Size

45KB
MD5

ba59dcfcaa6899ea0ac8cb164e8249fe
SHA1

1a9cebf0a76d2881a638e0b85bdc98365ff72801
SHA256

46054ecedf0965e34e584f1611976eb9b7f95719a0971e2aa9fed2d35503b6ee
SHA512

315a32b33b5e62d5b8735b78116a5b5fbca94c8e4ba05d2c7a5da6f1b9e02d3fcdae643b54c18d92bdc33de8a7345845b6bbe2f403e87a2e5691b13025bf9898
SSDEEP

768:eTIYgf3k4RZDI2mAqgWiinlUC23liUL0ccKr2nCtnwC3sfDoKcccccccKKKKKKK6:eZgfFnDI22gWi/rQU0ccmwMs+A3W

Score

1^/10

Malware Config

Signatures

Files

keepass2john.exe
.exe windows x64

855de89c500b1f6a9d2f8181b5e30831

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygcrypto-1.1

SHA256_Final
SHA256_Init
SHA256_Update

cygwin1

__assert_func
__cxa_atexit
__errno
__getreent
__locale_ctype_ptr
__main
_dll_crt0
_impure_ptr
calloc
cygwin_detach_dll
cygwin_internal
dll_dllcrt0
exit
fclose
fflush
fgetc
fgets
fileno
fopen
fprintf
fputc
fread
free
fseek
ftell
fwrite
getc
getopt
isatty
malloc
memcmp
memcpy
memset
optarg
optind
posix_memalign
printf
putchar
puts
realloc
snprintf
sprintf
sscanf
stat
stpcpy
strcasecmp
strchr
strcmp
strcpy
strdup
strerror
strlen
strlwr
strncat
strnlen
strpbrk
strstr
strupr
ungetc
vfprintf
write

kernel32

GetModuleHandleA

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

855de89c500b1f6a9d2f8181b5e30831

Headers

DLL Characteristics

File Characteristics

Imports

cygcrypto-1.1

cygwin1

kernel32

Sections

.text Size: 30KB - Virtual size: 29KB

.data Size: 512B - Virtual size: 128B

.rdata Size: 6KB - Virtual size: 5KB

.buildid Size: 512B - Virtual size: 53B

.pdata Size: 1KB - Virtual size: 1KB

.xdata Size: 2KB - Virtual size: 1KB

.bss Size: - Virtual size: 10KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 30KB - Virtual size: 29KB

.data
Size: 512B - Virtual size: 128B

.rdata
Size: 6KB - Virtual size: 5KB

.buildid
Size: 512B - Virtual size: 53B

.pdata
Size: 1KB - Virtual size: 1KB

.xdata
Size: 2KB - Virtual size: 1KB

.bss
Size: - Virtual size: 10KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB