8cc60b628bded497b11dbc04facc7b5d7160294cbe521764df1a9ccb219bba6b

Sharing

Copy URL Twitter E-mail

General

Target

8cc60b628bded497b11dbc04facc7b5d7160294cbe521764df1a9ccb219bba6b
Size

3.8MB
MD5

90adcfdaead2fda42b9353d44f7a8ceb
SHA1

c3a6ee7115b4b75eec4d945df7493c53c1793daf
SHA256

8cc60b628bded497b11dbc04facc7b5d7160294cbe521764df1a9ccb219bba6b
SHA512

2cfbce762480501283000e00ec2b2af621fedf75de0cdec7a973c44e9d1c35b013cbe08b8eb4f0187eea3f9bc85788dc0bbaf65b9c5026d662ff341f56c2e637
SSDEEP

98304:NRY+3TYsDrmvGiTsjxVYUSKEqy8RO2p1XDRNvKJ5uvHl4o:k+c9zsjxVYUgqpOi+o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/putty.exe

Files

8cc60b628bded497b11dbc04facc7b5d7160294cbe521764df1a9ccb219bba6b
.iso
out.iso
.iso
putty.exe
.exe windows:6 windows x64 arch:x64

2c52466f869b1e857bf84add4b09cdb8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

advapi32

RegCloseKey
RegOpenKeyA
RegQueryValueExA
RegCreateKeyA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyA
RegSetValueExA
EqualSid
AllocateAndInitializeSid
CopySid
GetLengthSid
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetSecurityDescriptorOwner
GetUserNameA

comdlg32

ChooseFontA
GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

gdi32

CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontA
CreatePalette
CreatePen
CreateSolidBrush
DeleteDC
DeleteObject
ExcludeClipRect
GetBkMode
GetCharWidthA
GetCharWidthW
GetCharWidth32A
GetCharWidth32W
GetCharABCWidthsFloatA
GetDeviceCaps
GetOutlineTextMetricsA
GetPixel
GetStockObject
TranslateCharsetInfo
GetCharacterPlacementW
IntersectClipRect
LineTo
Rectangle
RealizePalette
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetPaletteEntries
SetPixel
SetTextColor
SetTextAlign
UpdateColors
GetTextMetricsA
GetObjectA
MoveToEx
ExtTextOutA
ExtTextOutW
Polyline
UnrealizeObject
CreateFontIndirectA
GetTextExtentPoint32A
GetTextExtentExPointA
SetMapMode
TextOutA
BitBlt
GetCurrentObject
GetDIBits

imm32

ImmReleaseContext
ImmGetCompositionStringW
ImmSetCompositionFontA
ImmSetCompositionWindow
ImmGetContext

ole32

CoInitialize
CoUninitialize
CoCreateInstance

shell32

ShellExecuteA

user32

GetQueueStatus
GetClipboardOwner
SystemParametersInfoA
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
DrawEdge
GetCaretBlinkTime
MapDialogRect
GetParent
GetSysColorBrush
SetActiveWindow
GetSystemMetrics
EnableWindow
SetFocus
DefDlgProcA
SendDlgItemMessageA
GetDlgItemTextA
SetDlgItemTextA
EndDialog
DialogBoxParamA
CreateDialogParamA
SetWindowPlacement
GetWindowPlacement
MoveWindow
CreateWindowExA
DispatchMessageA
GetMessageA
GetScrollInfo
SetScrollInfo
IsDialogMessageA
DrawIconEx
LoadImageA
DestroyIcon
LoadIconA
LoadCursorA
GetDesktopWindow
SetClassLongPtrA
SetWindowLongPtrA
GetWindowLongPtrA
OffsetRect
GetSysColor
ScreenToClient
SetCaretPos
ShowCaret
HideCaret
DestroyCaret
CreateCaret
FindWindowA
GetCursorPos
SetCursor
ShowCursor
MessageBeep
MessageBoxIndirectA
GetWindowRect
GetClientRect
GetDlgItem
SetWindowTextA
InvalidateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
SetForegroundWindow
GetForegroundWindow
UpdateWindow
TrackPopupMenu
DeleteMenu
AppendMenuA
InsertMenuA
EnableMenuItem
CheckMenuItem
CreatePopupMenu
CreateMenu
GetSystemMenu
KillTimer
SetTimer
MsgWaitForMultipleObjects
ReleaseCapture
SetCapture
GetCapture
ToAsciiEx
SetKeyboardState
GetKeyboardState
EmptyClipboard
RegisterClipboardFormatA
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
IsZoomed
IsIconic
SetWindowPos
FlashWindow
ShowWindow
DestroyWindow
IsWindow
CreateWindowExW
RegisterClassW
RegisterClassA
GetDoubleClickTime
PostQuitMessage
DefWindowProcW
PostMessageA
SendMessageA
GetMessageTime
PeekMessageW
PeekMessageA
DispatchMessageW
TranslateMessage
RegisterWindowMessageA
GetKeyboardLayout
MessageBoxA
SetWindowTextW

kernel32

SetEndOfFile
HeapSize
GetTimeZoneInformation
CreateFileW
FlushFileBuffers
GetProcessHeap
SetStdHandle
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
IsValidCodePage
FindNextFileW
FindFirstFileExW
GetStringTypeW
HeapReAlloc
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
SetFilePointerEx
GetFileSizeEx
GetConsoleOutputCP
ReadConsoleW
GetConsoleMode
OutputDebugStringW
HeapAlloc
HeapFree
WriteConsoleW
GetModuleFileNameW
GetFileType
GetStdHandle
GetModuleHandleExW
ExitProcess
RtlPcToFileHeader
RaiseException
EncodePointer
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetLastError
RtlUnwindEx
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetSystemDirectoryA
CreateMutexA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetLocalTime
GetACP
OpenProcess
FormatMessageA
LoadLibraryA
CreatePipe
WaitForSingleObject
SetEvent
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetOverlappedResult
CreateNamedPipeA
CreateEventA
ConnectNamedPipe
WaitNamedPipeA
SetHandleInformation
GetEnvironmentVariableA
SetCommTimeouts
SetCommState
SetCommBreak
GetCommState
ClearCommBreak
LocalFree
LocalAlloc
RtlUnwind
GetCurrentThreadId
ReadFile
ReleaseMutex
CopyFileW
lstrcpyA
WinExec
CreateDirectoryW
LoadLibraryExA
LocalFileTimeToFileTime
GlobalMemoryStatus
GetWindowsDirectoryA
GetSystemTimeAsFileTime
GetThreadTimes
GetCurrentThread
GetCurrentProcess
GetProcessTimes
QueryPerformanceCounter
FindNextFileA
FindFirstFileA
FindClose
FindResourceA
SizeofResource
LockResource
LoadResource
FreeLibrary
Beep
CloseHandle
GetLastError
CreateThread
CreateProcessA
GetTickCount
MapViewOfFile
UnmapViewOfFile
GetModuleFileNameA
GetProcAddress
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MulDiv
CreateFileMappingA
MultiByteToWideChar
WideCharToMultiByte
GetOEMCP
GetCPInfo
GetLocaleInfoA
IsDBCSLeadByteEx
CreateFileA
DeleteFileA
WriteFile
GetTempPathA
GetCurrentProcessId

Sections

.text
Size: 793KB - Virtual size: 792KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
readme.txt

Sharing

General

Malware Config

Signatures

Files

2c52466f869b1e857bf84add4b09cdb8

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

comdlg32

gdi32

imm32

ole32

shell32

user32

kernel32

Sections

.text Size: 793KB - Virtual size: 792KB

.rdata Size: 252KB - Virtual size: 252KB

.data Size: 2.7MB - Virtual size: 2.7MB

.pdata Size: 34KB - Virtual size: 34KB

_RDATA Size: 512B - Virtual size: 348B

.rsrc Size: 16KB - Virtual size: 15KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 793KB - Virtual size: 792KB

.rdata
Size: 252KB - Virtual size: 252KB

.data
Size: 2.7MB - Virtual size: 2.7MB

.pdata
Size: 34KB - Virtual size: 34KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 6KB - Virtual size: 6KB