69521cc9b0b608ae92db0c1118604000N

General

Target

69521cc9b0b608ae92db0c1118604000N
Size

16KB
MD5

69521cc9b0b608ae92db0c1118604000
SHA1

f7650a9a1274945b92a0ced44ab0a6c84ed7569b
SHA256

cc836c4c71cdcaaaab4335c37fe5e31b8d1a643865e9743902346098531d4e93
SHA512

ea276524ec20e2c8bc004f0e8b5a2fa9c0d6dd5cc069cf80cb18266e0108e5f8a9ff5f737fd6b4e5a3e27b958c827526bcf30e4895866fcc0b6819c616dcd8db
SSDEEP

384:lnX+DK+giPghViW1RkTHZSUMoCpwdWblWuYMNG:cpWkZywdslWuY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69521cc9b0b608ae92db0c1118604000N

Files

69521cc9b0b608ae92db0c1118604000N
.dll windows:4 windows x64 arch:x64

f477cd15f771ebb3ff22d55504a4b720

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\cygwin\home\gecko\build-20130313T132615-jweosppmjl\perl\lib\auto\Time\HiRes\HiRes.pdb

Imports

perl516

Perl_sv_2iv_flags
Perl_sv_newmortal
Perl_stack_grow
Perl_newSVpvf_nocontext
Perl_sv_2nv_flags
Perl_newSV
Perl_sv_2pv_flags
Perl_mg_set
Perl_my_cxt_init
Perl_newXS_flags
Perl_croak_nocontext
Perl_pop_scope
Perl_push_scope
Perl_xs_apiversion_bootcheck
Perl_sv_setnv
Perl_call_list
Perl_get_context
Perl_gv_add_by_type
Perl_newSVnv
Perl_newSViv
Perl_hv_common_key_len
Perl_sv_setiv
Perl_xs_version_bootcheck
Perl_dowantarray
Perl_sv_2uv_flags
Perl_newSVsv
PL_ppaddr
Perl_croak_xs_usage
Perl_sv_2mortal

kernel32

DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
GetSystemTimeAsFileTime
QueryPerformanceCounter
Sleep
QueryPerformanceFrequency

msvcrt

free
_initterm
malloc
memcmp

Exports

Exports

_boot_Time__HiRes
boot_Time__HiRes

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f477cd15f771ebb3ff22d55504a4b720

Headers

File Characteristics

PDB Paths

Imports

perl516

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 1KB

.pdata Size: 512B - Virtual size: 456B

.reloc Size: 512B - Virtual size: 72B

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 1KB

.pdata
Size: 512B - Virtual size: 456B

.reloc
Size: 512B - Virtual size: 72B