C:\Users\paulb\code\squirrel\squirrel.windows\src\Setup\bin\Release\Setup.pdb
Static task
static1
1 signatures
General
-
Target
postman-win64-6.0.10-setup (1) (1).exe
-
Size
76.1MB
-
MD5
54f1e687b34d2720ccc6f3780ae6e61b
-
SHA1
c4e4c1a0e8de71027cc5c3ed774c6d132133a017
-
SHA256
6b7c81e712d887167bada1655a1f5664559ac92e8641801773aa240e981fe389
-
SHA512
edcf2252fdc11120ece6e36b7363e2dea97ae82ce8a92ecda1639a05db5d1ef9b68f801346bff83bb4e4145a7e0302ea3b96e77cc0c44eddbe26704344e1e8df
-
SSDEEP
1572864:fNLYo7VZIyr5Ah2kB+hK6ZBMpYTiSDrcnVym6Ph2XAKCArc7Ke0Dh:VfIK5AhLsK637rfA
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource postman-win64-6.0.10-setup (1) (1).exe
Files
-
postman-win64-6.0.10-setup (1) (1).exe.exe windows:5 windows x86 arch:x86
e859dd0409c406b4558a8d7b196d17f1
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
FreeLibrary
InitializeCriticalSectionAndSpinCount
GetFileAttributesW
CreateFileW
SetFilePointer
ReadFile
SystemTimeToFileTime
GetCurrentDirectoryW
MultiByteToWideChar
LocalFileTimeToFileTime
WideCharToMultiByte
CreateDirectoryW
WriteFile
SetFileTime
FreeResource
LoadResource
FindResourceW
SizeofResource
LockResource
CreateProcessW
lstrcmpiW
LeaveCriticalSection
RaiseException
EnterCriticalSection
LoadLibraryExW
GetCurrentThreadId
DecodePointer
LoadLibraryW
LCMapStringW
WriteConsoleW
SetStdHandle
GetCurrentProcess
GetModuleFileNameW
DeleteFileW
CloseHandle
GetExitCodeProcess
WaitForSingleObject
MoveFileW
GetTempFileNameW
GetLastError
GetTempPathW
lstrlenW
DeleteCriticalSection
GetModuleHandleW
GetProcAddress
VerSetConditionMask
GetStringTypeW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
HeapReAlloc
HeapSize
VerifyVersionInfoW
IsDebuggerPresent
OutputDebugStringW
IsProcessorFeaturePresent
HeapFree
HeapAlloc
EncodePointer
GetCommandLineW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetStdHandle
GetFileType
ExitProcess
GetModuleHandleExW
RtlUnwind
GetProcessHeap
user32
MessageBoxW
DestroyWindow
LoadStringW
ExitWindowsEx
GetActiveWindow
wsprintfW
CharNextW
advapi32
GetUserNameW
RegDeleteValueW
RegCreateKeyExW
RegEnumKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
GetTokenInformation
RegCloseKey
AdjustTokenPrivileges
OpenProcessToken
LookupPrivilegeValueW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
shell32
SHGetFolderPathW
ShellExecuteW
ShellExecuteExW
ole32
CoTaskMemRealloc
CoTaskMemAlloc
CoInitialize
CoUninitialize
CoTaskMemFree
CoCreateInstance
oleaut32
VariantInit
VarUI4FromStr
SysFreeString
SysAllocString
VariantClear
urlmon
URLDownloadToFileW
comctl32
InitCommonControlsEx
Sections
.text Size: 104KB - Virtual size: 104KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 41KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 5KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 78.8MB - Virtual size: 78.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ