install-info[.]exe

General

Target

install-info.exe
Size

49KB
MD5

4ea5c84837da61fec3fc095dfef518a8
SHA1

d5837f654f5a7d8ba8a0aa783b539598c6caaf6b
SHA256

51af77b8e3a33af7f1dc87d8eddc98feb360f462da48219f9c467eedf4ab4be8
SHA512

5be924bb520580b48368d249b194a92ce9f697a45c96b591677a158770cb0be79c633b29602bd6490ff789cb9b260624164e85577c9e9f6e1864a566da72325a
SSDEEP

768:SQtZ66tM7UPA8PtD3zXEwuYyOWEsuz/wms9OBGROQpB:/CoM7i/CYiY7wxOwRO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
install-info.exe

Files

install-info.exe
.exe windows:4 windows x86 arch:x86

d96b573c3634472575104881f4d8ee4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msys-intl-8

__printf__
libintl_bindtextdomain
libintl_fprintf
libintl_gettext
libintl_snprintf
libintl_sprintf
libintl_textdomain

msys-1.0

__assert
__errno
__main
__mb_cur_max
_ctype_
abort
calloc
close
cygwin_conv_to_posix_path
cygwin_internal
dll_crt0__FP11per_process
exit
fclose
fflush
fopen
fputs
fread
free
freopen
fseek
fwrite
getenv
malloc
mbtowc
memchr
memcpy
memmove
memset
open
pclose
perror
popen
putc
puts
qsort
realloc
setlocale
sprintf
strchr
strcmp
strcpy
strdup
strerror
strlen
strncat
strncmp
strrchr
strtoul
vsnprintf

msys-regex-1

regcomp
regerror
regexec

kernel32

GetModuleFileNameA
GetModuleHandleA
GetStdHandle
VirtualProtect
VirtualQuery
WriteFile

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data_cy
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 228B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d96b573c3634472575104881f4d8ee4a

Headers

File Characteristics

Imports

msys-intl-8

msys-1.0

msys-regex-1

kernel32

Sections

.text Size: 37KB - Virtual size: 37KB

.data Size: 8KB - Virtual size: 7KB

.data_cy Size: 512B - Virtual size: 4B

.bss Size: - Virtual size: 228B

.idata Size: 2KB - Virtual size: 1KB

.text
Size: 37KB - Virtual size: 37KB

.data
Size: 8KB - Virtual size: 7KB

.data_cy
Size: 512B - Virtual size: 4B

.bss
Size: - Virtual size: 228B

.idata
Size: 2KB - Virtual size: 1KB