e76547aecb83d2a7599718bbd556e39bbcd2d6498f1ba8fa5bc8203613eb7cf0

General

Target

e76547aecb83d2a7599718bbd556e39bbcd2d6498f1ba8fa5bc8203613eb7cf0
Size

7KB
MD5

443a63ff55b7f78823a9135ee20a8922
SHA1

81d51211e6e56dbf7129f228f1b39284a223bc68
SHA256

e76547aecb83d2a7599718bbd556e39bbcd2d6498f1ba8fa5bc8203613eb7cf0
SHA512

ccccba9fdd68cf7fcbc75c55fe83b735d466eb2854392fa7d74a0f1e044a88e786b9edc22100990aea93d67e838b5e50fc0a2d83d2a05e938d9f9004491ed414
SSDEEP

96:OZ7uQ5S3KJHgziWfef8B07aURnp2URVH3XVEU3kEAQr:Dg8CCImMVtvrH3XGU0EA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e76547aecb83d2a7599718bbd556e39bbcd2d6498f1ba8fa5bc8203613eb7cf0

Files

e76547aecb83d2a7599718bbd556e39bbcd2d6498f1ba8fa5bc8203613eb7cf0
.dll windows:6 windows x86 arch:x86

14325f9ea24a430811bede3c62d8e281

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\workspace\9-2-build-windows-i586-cygwin-phase2\jdk9\6725\build\windows-x86\support\modules_libs\java.desktop\jawt.pdb

Imports

awt

_awt_SynthesizeWindowActivation@12
_awt_SetBounds@24
_awt_CreateEmbeddedFrame@8
_DSGetComponent@8
_DSUnlockAWT@4
_DSLockAWT@4
_DSFreeDrawingSurface@4
_DSGetDrawingSurface@8

msvcr120

_amsg_exit
free
_malloc_crt
__CppXcptFilter
_initterm_e
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
__clean_type_info_names_internal
_except_handler4_common
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_initterm

kernel32

IsProcessorFeaturePresent
IsDebuggerPresent
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
DecodePointer
EncodePointer

Exports

Exports

_JAWT_GetAWT@8

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

14325f9ea24a430811bede3c62d8e281

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

awt

msvcr120

kernel32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 868B

.rsrc Size: 1024B - Virtual size: 864B

.reloc Size: 512B - Virtual size: 340B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 868B

.rsrc
Size: 1024B - Virtual size: 864B

.reloc
Size: 512B - Virtual size: 340B