8d9888658cc67333a5e4cf9c589cbdf51ea5c2b5c37424df6be1afca7262f18c

Sharing

Copy URL Twitter E-mail

General

Target

8d9888658cc67333a5e4cf9c589cbdf51ea5c2b5c37424df6be1afca7262f18c
Size

30KB
MD5

09ddc608d7d8cbb074a0574ed8e50cb4
SHA1

9d90655148df9bc74e841e6dfdcea4cc75d3c535
SHA256

8d9888658cc67333a5e4cf9c589cbdf51ea5c2b5c37424df6be1afca7262f18c
SHA512

96f941401f472a897314ae57b8579a6b600c30a262f4d9e1512150ff63a2401a40e68476d10ce4227e34592d437f6558b628b284b2a7e6aa62b52382b02cba80
SSDEEP

768:bMkFfVv/pE043VZm9bxXxhOKd0IssssssssssssssssdJW+G:/fN/fXWX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d9888658cc67333a5e4cf9c589cbdf51ea5c2b5c37424df6be1afca7262f18c

Files

8d9888658cc67333a5e4cf9c589cbdf51ea5c2b5c37424df6be1afca7262f18c
.exe windows x86

47f86e590e2c859f2755a02a2c062279

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msys-gpg-error-0

gpg_err_init
gpg_err_set_errno
gpg_strerror
gpg_strsource
gpgrt_argparse
gpgrt_log_error
gpgrt_log_info
gpgrt_log_set_prefix
gpgrt_set_strusage
gpgrt_strusage
gpgrt_usage

msys-gcc_s-1

__deregister_frame_info
__register_frame_info

msys-intl-8

libintl_bindtextdomain
libintl_gettext
libintl_setlocale
libintl_textdomain

msys-2.0

__cxa_atexit
__errno
__main
_dll_crt0@0
_fopen64
_impure_ptr
calloc
cygwin_internal
dll_dllcrt0
exit
fgets
fopen
free
malloc
msys_detach_dll
posix_memalign
printf
putchar
puts
realloc
rewind
strcasecmp
strchr
strcmp
strlen
strncasecmp
strtoul

kernel32

FreeLibrary
GetModuleHandleA
GetProcAddress
LoadLibraryA

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 260B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

47f86e590e2c859f2755a02a2c062279

Headers

DLL Characteristics

File Characteristics

Imports

msys-gpg-error-0

msys-gcc_s-1

msys-intl-8

msys-2.0

kernel32

Sections

.text Size: 6KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 160B

.rdata Size: 15KB - Virtual size: 15KB

.buildid Size: 512B - Virtual size: 53B

/4 Size: 1KB - Virtual size: 1KB

.bss Size: - Virtual size: 260B

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 160B

.rdata
Size: 15KB - Virtual size: 15KB

.buildid
Size: 512B - Virtual size: 53B

/4
Size: 1KB - Virtual size: 1KB

.bss
Size: - Virtual size: 260B

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB