5a2df551ddd80d13185f01a4447bc24c962ea2a0e31be6d69be32ec9f7800896

Sharing

Copy URL Twitter E-mail

General

Target

5a2df551ddd80d13185f01a4447bc24c962ea2a0e31be6d69be32ec9f7800896
Size

41KB
MD5

77c3d3891e8d2c80fc8fd02068702470
SHA1

844545c6d5c9d20f28b81ed2c9668ac4eeb8f3c2
SHA256

5a2df551ddd80d13185f01a4447bc24c962ea2a0e31be6d69be32ec9f7800896
SHA512

954895ed004f766d1d68797b791f81c314ad96e5c65f06d856a56c8c55af2e53b75ac1b5fa684171de75448b30019f519efc0596f76d99b26f4f2315bafab81d
SSDEEP

768:QITyqLFfder2Tc8ojPIBMOFYvoSm0r6dM02mO:1TzFfEr2q7IBxF+mu6i7

Score

N/A

Malware Config

Signatures

Files

5a2df551ddd80d13185f01a4447bc24c962ea2a0e31be6d69be32ec9f7800896
.exe windows x86

614f16ef8eac7bb8384ce81228bbf458

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

libglib-2.0-0

g_build_filename
g_dir_open_utf8
g_dir_read_name_utf8
g_error_free
g_file_test_utf8
g_find_program_in_path_utf8
g_free
g_getenv_utf8
g_hash_table_destroy
g_hash_table_foreach
g_hash_table_insert
g_hash_table_lookup
g_hash_table_new_full
g_log
g_option_context_add_main_entries
g_option_context_free
g_option_context_new
g_option_context_parse
g_option_context_set_ignore_unknown_options
g_path_get_basename
g_path_get_dirname
g_pattern_match_string
g_pattern_spec_free
g_pattern_spec_new
g_print
g_str_equal
g_str_has_suffix
g_str_hash
g_strcanon
g_strdup
g_strdup_printf
g_strerror
g_strfreev
g_strrstr
g_strsplit

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

_execv
__dllonexit
__getmainargs
__initenv
__lconv_init
__mb_cur_max
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_errno
_fmode
_initterm
_iob
_lock
_onexit
_unlock
abort
atoi
calloc
exit
fputc
free
getenv
localeconv
malloc
memcpy
setlocale
signal
strchr
strcmp
strerror
strlen
strncmp
wcslen

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 236B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

614f16ef8eac7bb8384ce81228bbf458

Headers

File Characteristics

Imports

libglib-2.0-0

kernel32

msvcrt

Sections

.text Size: 29KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 236B

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: - Virtual size: 3KB

.idata Size: 3KB - Virtual size: 2KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

/4 Size: 512B - Virtual size: 28B

.text
Size: 29KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 236B

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: - Virtual size: 3KB

.idata
Size: 3KB - Virtual size: 2KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B

/4
Size: 512B - Virtual size: 28B