5067a48d561c691511345fd79f53f90f

General

Target

5067a48d561c691511345fd79f53f90f
Size

386KB
MD5

5067a48d561c691511345fd79f53f90f
SHA1

0f30dc8879f28518a7a1d2b1d69a0de4e1a3131b
SHA256

dba88276c18d12d9f4b40547070b1559177b936c995140d881cd71374f19a9a8
SHA512

fd246950cd39ebc73aea351077a696d348c4582a054a6ca54d4c1023933f8903d8806027919464f078bb749e0a0f10f284b0087fabab7fd9bdf0b7c2d11f126e
SSDEEP

6144:0rYVVL048ocIV+2t5sBzM6RJZ4ykGVLg6RpIPnZkgsWqYB80Gck0aGVLrU1nQQDu:tVVL0NHIxshodB8XjnB/1q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5067a48d561c691511345fd79f53f90f

Files

5067a48d561c691511345fd79f53f90f
.exe windows:4 windows x86 arch:x86

97fa8e73812b70563de05dedb33da6b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

cygwin

__errno
alarm
asctime
atexit
atoi
chdir
chown
close
creat
cygwin32_bind
cygwin32_connect
cygwin32_gethostbyaddr
cygwin32_gethostbyname
cygwin32_inet_addr
cygwin32_inet_ntoa
cygwin32_recvfrom
cygwin32_select
cygwin32_sendto
cygwin32_setsockopt
cygwin32_socket
dll_crt0__FP11per_process
__srget
exit
fclose
fcntl
fflush
fgets
fileno
fopen
fprintf
fread
free
fstat
ftruncate
getenv
geteuid
getgrgid
gethostname
getpass
getpid
getpwuid
gettimeofday
getuid
getwd
gmtime
htonl
htons
ioctl
kill
localtime
longjmp
lseek
lstat
malloc
memcpy
memset
mkdir
mktime
ntohl
ntohs
open
opendir
printf
qsort
read
readdir
realloc
rename
rewind
rmdir
setjmp
signal
sleep
sprintf
sscanf
stat
strcasecmp
strcat
strchr
strcmp
strdup
strerror
strftime
strlen
strncmp
strncpy
strrchr
strstr
strtok
time
unlink
utime
vfprintf
write

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stab
Size: 26KB - Virtual size: 26KB

.stabstr
Size: 203KB - Virtual size: 203KB

Sharing

General

Malware Config

Signatures

Files

97fa8e73812b70563de05dedb33da6b6

Headers

File Characteristics

Imports

cygwin

Sections

.text Size: 93KB - Virtual size: 93KB

.bss Size: - Virtual size: 6KB

.data Size: 21KB - Virtual size: 21KB

.idata Size: 2KB - Virtual size: 2KB

.stab Size: 26KB - Virtual size: 26KB

.stabstr Size: 203KB - Virtual size: 203KB

.text
Size: 93KB - Virtual size: 93KB

.bss
Size: - Virtual size: 6KB

.data
Size: 21KB - Virtual size: 21KB

.idata
Size: 2KB - Virtual size: 2KB

.stab
Size: 26KB - Virtual size: 26KB

.stabstr
Size: 203KB - Virtual size: 203KB