364fb2cd449744c7309750fac98b0d2736259bd47d40b0208e4aff472293e201

Sharing

Copy URL Twitter E-mail

General

Target

364fb2cd449744c7309750fac98b0d2736259bd47d40b0208e4aff472293e201
Size

74KB
MD5

65deb5a5f7c69f0d42ce0cea6cdab86e
SHA1

ce394177b63b06730e9a6e2d2ecac01b4af6ae7f
SHA256

364fb2cd449744c7309750fac98b0d2736259bd47d40b0208e4aff472293e201
SHA512

84dd0d69346776fcb41cb758377899100a4f57d35148600917d368b915a4fa4df3e8fe3b6ea944d5991f90656825ba49dead0f97b982c2e766ce749a900afe60
SSDEEP

1536:MDbMt7a5/gEnCM/VA6xBcBM5vrY+ia0EzOcH+ayW+:MUt2aEnRX5rl7b+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
364fb2cd449744c7309750fac98b0d2736259bd47d40b0208e4aff472293e201

Files

364fb2cd449744c7309750fac98b0d2736259bd47d40b0208e4aff472293e201
.exe windows:4 windows x86 arch:x86

93f9a1cd1e0381e7bb9aa28b43635952

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

PDB Paths

Imports

msys-ncursesw6

_nc_curr_col
_nc_curr_line
_nc_doalloc
_nc_find_entry
_nc_find_user_entry
_nc_first_name
_nc_get_hash_table
_nc_head
_nc_home_terminfo
_nc_name_match
_nc_pathlast
_nc_rootname
_nc_set_source
_nc_set_type
_nc_tail
_nc_tic_dir
_nc_tinfo_fkeys
_nc_tparm_analyze
_nc_tparm_err
_nc_tracing
_nc_trim_sgr0
_nc_user_definable
_nc_visbuf
_nc_visbuf2
_nc_warning
boolcodes
boolfnames
boolnames
curses_version
keyname
numcodes
numfnames
numnames
strcodes
strfnames
strnames
tgoto
tigetflag
tigetstr
tparm
use_extended_names

msys-ticw6

_nc_capcmp
_nc_check_termtype2
_nc_disable_period
_nc_infotocap
_nc_read_entry_source
_nc_resolve_uses2
_nc_set_writedir
_nc_strict_bsd
_nc_syntax
_nc_tic_expand
_nc_tic_written
_nc_write_entry
_nc_write_object

msys-2.0

__cxa_atexit
__errno
__getreent
__locale_ctype_ptr
__main
_dll_crt0@0
_fdopen64
_fopen64
_impure_ptr
_stat64
access
atoi
calloc
cygwin_internal
dll_dllcrt0
exit
fclose
fdopen
fflush
fgetc
fgets
fopen
fprintf
fputc
fputs
free
fseek
fwrite
getenv
getopt
malloc
memcmp
memcpy
mkstemp
msys_detach_dll
optarg
optind
perror
posix_memalign
printf
putchar
puts
realloc
remove
rewind
sprintf
sscanf
stat
strchr
strcmp
strcpy
strdup
strerror
strlen
strncmp
strncpy
strstr
strtol
tolower
umask

kernel32

FreeLibrary
GetModuleHandleA
GetModuleHandleW
GetProcAddress
LoadLibraryA

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 388B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

93f9a1cd1e0381e7bb9aa28b43635952

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msys-ncursesw6

msys-ticw6

msys-2.0

kernel32

Sections

.text Size: 42KB - Virtual size: 41KB

.data Size: 512B - Virtual size: 64B

.rdata Size: 21KB - Virtual size: 20KB

.buildid Size: 512B - Virtual size: 53B

/4 Size: 4KB - Virtual size: 4KB

.bss Size: - Virtual size: 388B

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 42KB - Virtual size: 41KB

.data
Size: 512B - Virtual size: 64B

.rdata
Size: 21KB - Virtual size: 20KB

.buildid
Size: 512B - Virtual size: 53B

/4
Size: 4KB - Virtual size: 4KB

.bss
Size: - Virtual size: 388B

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB