7c245dd45df28e55c00225dd1684516e261605bd86c0d1291daf68075d028f4f

Sharing

Copy URL Twitter E-mail

General

Target

7c245dd45df28e55c00225dd1684516e261605bd86c0d1291daf68075d028f4f
Size

4.8MB
MD5

2c7774166c98d8ba8b427f9fbaaf674b
SHA1

d9a6fbcd30df4911201d5d35323d4ed32d740359
SHA256

7c245dd45df28e55c00225dd1684516e261605bd86c0d1291daf68075d028f4f
SHA512

1ca68261fd0f33c5505263b0794549fac010b5c0fd269faf0613ef7a525136dd217d1ec4556921eec6ca38a46171bfc86db2a50d1a877f7300ad72ed325e8f80
SSDEEP

98304:Mq2gCGlPLU68OfOYdfj595+UDh0stoQwL2aOpRfJPKvmFnEdjFW:MqJCGlw6VOYdfj595+UDVoQwKaWhFKvB

Score

N/A

Malware Config

Signatures

Files

7c245dd45df28e55c00225dd1684516e261605bd86c0d1291daf68075d028f4f
.exe windows x86

12f0677191527df2db85db8aab5230d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygwin1

__assert
__errno
__getreent
__infinity
__main
_ctype_
_fcntl64
_fileno
_fopen64
_impure_ptr
_lseek64
_open64
_setmode
_timezone
abort
acos
asin
atan
atexit
atof
atoi
bind
calloc
ceil
close
connect
cos
cosh
cygwin_internal
dll_crt0__FP11per_process
exit
exp
exp2f
fclose
fflush
fgetc
floor
fprintf
fputc
fputs
fread
free
frexp
fscanf
fseek
ftell
fwrite
getc
getenv
gethostbyname
getrusage
getsockname
getsockopt
gettimeofday
gmtime
inet_aton
inet_ntoa
ioctl
ldexp
localtime
log
log10
longjmp
lrintf
malloc
memalign
memchr
memcmp
memcpy
memmove
memset
mkstemp
mktime
perror
pow
printf
pthread_create
pthread_join
puts
qsort
rand
random
read
realloc
recvfrom
rename
rint
round
roundf
select
sendto
setjmp
setmode
setsockopt
setvbuf
signal
sin
sinh
sleep
snprintf
socket
sprintf
sqrt
srand
sscanf
strcasecmp
strchr
strcmp
strcpy
strcspn
strdup
strlen
strncpy
strpbrk
strrchr
strstr
strtod
strtok
strtol
strtoul
tan
tanh
tcgetattr
tcsetattr
time
usleep
vfprintf
vsnprintf
vsprintf
write

cygz

crc32
deflate
deflateEnd
deflateInit2_
deflateInit_
deflateReset
inflate
inflateEnd
inflateInit_
inflateReset
uncompress

kernel32

GetModuleHandleA
GetProcAddress
LoadLibraryA
MultiByteToWideChar
WideCharToMultiByte

Sections

.text
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 200KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 695KB - Virtual size: 694KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1.0MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

M�
Size: 235KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

12f0677191527df2db85db8aab5230d0

Headers

File Characteristics

Imports

cygwin1

cygz

kernel32

Sections

.text Size: 3.6MB - Virtual size: 3.6MB

.rodata Size: 11KB - Virtual size: 11KB

.data Size: 200KB - Virtual size: 199KB

.rdata Size: 695KB - Virtual size: 694KB

.bss Size: - Virtual size: 1.0MB

.idata Size: 4KB - Virtual size: 3KB

M� Size: 235KB - Virtual size: 236KB

.text
Size: 3.6MB - Virtual size: 3.6MB

.rodata
Size: 11KB - Virtual size: 11KB

.data
Size: 200KB - Virtual size: 199KB

.rdata
Size: 695KB - Virtual size: 694KB

.bss
Size: - Virtual size: 1.0MB

.idata
Size: 4KB - Virtual size: 3KB

M�
Size: 235KB - Virtual size: 236KB