8d9a5feeb2eaee079f1f5adffb8e0d67

General

Target

8d9a5feeb2eaee079f1f5adffb8e0d67
Size

60KB
MD5

8d9a5feeb2eaee079f1f5adffb8e0d67
SHA1

de60c8b96cdf021f6e1b95abc448f7fa09ef5f05
SHA256

c612b3675f2096ef3c9ca21be9f9b1f3b7951d1a991a8162a6df6a7c5f59a3c1
SHA512

3e32dfc9da72aa0a772f8cf5bc5a67aec62d49adf89e20716021ec21f9b52df8888a07b264b19db0a0c64a194eeb0dfc53af0876ed05b29daef7b7d3c3ab7565
SSDEEP

1536:wL9iXiCdLPq/8QPCEEOr9bCv7gGkI7BO4znKoR:wLo9Pq/8QbrxC9v7B5rKoR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d9a5feeb2eaee079f1f5adffb8e0d67

Files

8d9a5feeb2eaee079f1f5adffb8e0d67
.exe windows:4 windows x86 arch:x86

0c1245fc82bcdba9a1b857c9f3966ab5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygwin1

__assert
__errno
__getreent
__main
__mb_cur_max
_ctype_
_exit
_fcntl64
_fstat64
_ftruncate64
_impure_ptr
_lseek64
_open64
abort
atexit
calloc
clock_gettime
close
cygwin_internal
dll_crt0__FP11per_process
exit
fclose
fdatasync
fflush
fprintf
fputs
free
fsync
getenv
getpagesize
gettimeofday
iswprint
localeconv
malloc
mbrtowc
mbsinit
memcpy
memmove
memset
printf
putc_unlocked
raise
read
realloc
setlocale
setmode
sigaction
sigaddset
sigemptyset
sigismember
sigprocmask
sprintf
strchr
strcmp
strerror_r
strlen
strncmp
strtoumax
vfprintf
write

cygintl-8

libintl_bindtextdomain
libintl_gettext
libintl_ngettext
libintl_textdomain

kernel32

GetModuleHandleA

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0c1245fc82bcdba9a1b857c9f3966ab5

Headers

File Characteristics

Imports

cygwin1

cygintl-8

kernel32

Sections

.text Size: 28KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 80B

.rdata Size: 8KB - Virtual size: 7KB

.bss Size: - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 1KB

.ddata Size: 20KB - Virtual size: 20KB

.text
Size: 28KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 80B

.rdata
Size: 8KB - Virtual size: 7KB

.bss
Size: - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB

.ddata
Size: 20KB - Virtual size: 20KB