b6458d6767c6c4608428e30e4a73ee9a

General

Target

b6458d6767c6c4608428e30e4a73ee9a
Size

254KB
MD5

b6458d6767c6c4608428e30e4a73ee9a
SHA1

7b41964a3053d68cd5930cb4df3849acc242a1ab
SHA256

9070fe38c2a53b22b41d224e83cc76236d9040ee18441d108327c82f253e7779
SHA512

3af6851a6899eeac0f0af9cfd101b49cc716a615198d3c518f1d7fb2eb3d41926f2ce701ee28f8ceae0887a3d34613486574d5d66ac9f24b1c8e8cd74ba340f7
SSDEEP

6144:3Q4ne7ONCP9Pk++UEPAI8OQrc0w6B2KPBslJvTr6QvKk5DFZ:A4n2ONk9Pk58OQrc0w6B2KPBsvuk9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6458d6767c6c4608428e30e4a73ee9a

Files

b6458d6767c6c4608428e30e4a73ee9a
.exe windows:4 windows x86 arch:x86

8933961f386f701ea24b8d9ecfe46377

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
FindAtomA
GetAtomNameA
GetModuleHandleA

cygwin1

__errno
__main
_ctype_
_exit
abort
atoi
calloc
ctime
cygwin_internal
dll_crt0__FP11per_process
exit
fclose
fdopen
fflush
fgets
fopen
fprintf
fputc
fputs
free
fseek
fwrite
getc
getenv
isalnum
isalpha
iscntrl
isdigit
isgraph
islower
isprint
ispunct
isspace
isupper
isxdigit
malloc
memchr
memcpy
memset
mkstemp
pathconf
printf
putc
realloc
setbuf
sprintf
sscanf
strcasecmp
strcat
strchr
strcmp
strcpy
strdup
strerror
strlen
strncmp
strncpy
strtok
strtoul
time
ungetc
unlink
write

Sections

.text
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�-kA�
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8933961f386f701ea24b8d9ecfe46377

Headers

File Characteristics

Imports

kernel32

cygwin1

Sections

.text Size: 148KB - Virtual size: 148KB

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 20KB - Virtual size: 19KB

.bss Size: - Virtual size: 9KB

.idata Size: 2KB - Virtual size: 1KB

�-kA� Size: 81KB - Virtual size: 84KB

.text
Size: 148KB - Virtual size: 148KB

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 20KB - Virtual size: 19KB

.bss
Size: - Virtual size: 9KB

.idata
Size: 2KB - Virtual size: 1KB

�-kA�
Size: 81KB - Virtual size: 84KB