dadd6c91a168b297d79b929abe1f9de79130810a3a36b1a0702376ff99f61a52

Sharing

Copy URL

Twitter E-mail

General

Target

dadd6c91a168b297d79b929abe1f9de79130810a3a36b1a0702376ff99f61a52
Size

46KB
MD5

900cbe66cdfd4b76d5fabdc695eded93
SHA1

ae5e68f69516c41cd8ab681358a51411c06cd726
SHA256

dadd6c91a168b297d79b929abe1f9de79130810a3a36b1a0702376ff99f61a52
SHA512

d2494cef8017bb4a69e6727413f50b72c0fa6aad3ded2fb993937b4331b2be89cadefe6e57b1a19a0242e8608bc19b458586a6f9a130458c9e2d74c277a021ed
SSDEEP

768:p1LrPCrvmqAxwToTAzjx/pmLSo1bPvPn4obGbJERaxD2uAKYIogwisKl4qR:XLLAEwTkrPYSGFERaxmlIoBisKldR

Score

N/A

Malware Config

Signatures

Files

dadd6c91a168b297d79b929abe1f9de79130810a3a36b1a0702376ff99f61a52
.exe windows x86

60aaa106278edfa97f6c0b067e972aa6

Code Sign

04:7a:55
Certificate

Issuer

CN=Certum CA,O=Unizeto Sp. z o.o.,C=PL

Not Before

03-03-2009 12:58

Not After

03-03-2024 12:58

Subject

CN=Certum Time-Stamping Authority,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

04:7a:53
Certificate

Issuer

CN=Certum CA,O=Unizeto Sp. z o.o.,C=PL

Not Before

03-03-2009 12:53

Not After

03-03-2024 12:53

Subject

CN=Certum Level III CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

4e:03:19:b2:d3:55:1e:ae:21:1c:0e:6f:8d:f6:18:28
Certificate

Issuer

CN=Certum Level III CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

09-10-2012 09:53

Not After

09-10-2013 09:53

Subject

CN=Open Source Developer\,Jernej Simončič,O=-,C=SI,1.2.840.113549.1.9.1=#0c0d6a65726e656a40656e612e7369

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1b:c7:c1:95:57:12:21:be:06:82:3f:86:d1:ad:13:d1:32:d8:67:98
Signer

Actual PE Digest

1b:c7:c1:95:57:12:21:be:06:82:3f:86:d1:ad:13:d1:32:d8:67:98

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Open Source Developer\,Jernej Simončič,O=-,C=SI,1.2.840.113549.1.9.1=#0c0d6a65726e656a40656e612e7369

06-02-2013 22:13
Valid: false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

libgimpui-2.0-0

gimp_ui_init
gimp_window_set_transient
gimp_zoom_preview_get_source
gimp_zoom_preview_get_type
gimp_zoom_preview_new

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

__argc
__argv
__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_errno
_fmode
_initterm
_iob
_lock
_onexit
_unlock
_winmajor
abort
calloc
exit
floor
fprintf
free
frexp
fwrite
malloc
memcpy
signal
strlen
strncmp
vfprintf

libgimp-2.0-0

gimp_context_get_background
gimp_displays_flush
gimp_drawable_detach
gimp_drawable_get
gimp_drawable_get_color_uchar
gimp_install_procedure
gimp_main
gimp_pixel_fetcher_destroy
gimp_pixel_fetcher_get_pixel
gimp_pixel_fetcher_new
gimp_pixel_fetcher_set_bg_color
gimp_pixel_fetcher_set_edge_mode
gimp_plugin_menu_register
gimp_procedural_db_get_data
gimp_procedural_db_set_data
gimp_progress_init
gimp_rgn_iterator_dest
gimp_rgn_iterator_free
gimp_rgn_iterator_new
gimp_tile_cache_ntiles

libgimpbase-2.0-0

gimp_locale_directory

libgimpcolor-2.0-0

gimp_rgb_set_alpha

libgimpwidgets-2.0-0

gimp_dialog_new
gimp_double_adjustment_update
gimp_preview_draw_buffer
gimp_preview_invalidate
gimp_preview_untransform
gimp_scale_entry_new
gimp_standard_help_func
gtk_box_new

libglib-2.0-0

g_free
g_slist_append
g_slist_free

libgobject-2.0-0

g_signal_connect_data
g_type_check_instance_cast

libgtk-win32-2.0-0

gtk_adjustment_get_type
gtk_adjustment_set_value
gtk_box_get_type
gtk_box_pack_start
gtk_container_get_type
gtk_container_set_border_width
gtk_dialog_get_content_area
gtk_dialog_get_type
gtk_dialog_set_alternative_button_order
gtk_main
gtk_main_quit
gtk_table_get_type
gtk_table_new
gtk_table_set_col_spacings
gtk_table_set_row_spacings
gtk_widget_destroy
gtk_widget_get_type
gtk_widget_show
gtk_window_get_type

libintl-8

libintl_bind_textdomain_codeset
libintl_bindtextdomain
libintl_gettext
libintl_textdomain

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gnu_deb
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

60aaa106278edfa97f6c0b067e972aa6

Code Sign

04:7a:55Certificate

Extended Key Usages

04:7a:53Certificate

Key Usages

4e:03:19:b2:d3:55:1e:ae:21:1c:0e:6f:8d:f6:18:28Certificate

Extended Key Usages

Key Usages

1b:c7:c1:95:57:12:21:be:06:82:3f:86:d1:ad:13:d1:32:d8:67:98Signer

Signature Validations

Verification

06-02-2013 22:13 Valid: false

Headers

File Characteristics

Imports

libgimpui-2.0-0

kernel32

msvcrt

libgimp-2.0-0

libgimpbase-2.0-0

libgimpcolor-2.0-0

libgimpwidgets-2.0-0

libglib-2.0-0

libgobject-2.0-0

libgtk-win32-2.0-0

libintl-8

Sections

.text Size: 14KB - Virtual size: 14KB

.data Size: 512B - Virtual size: 164B

.rdata Size: 2KB - Virtual size: 1KB

.bss Size: - Virtual size: 1KB

.idata Size: 4KB - Virtual size: 4KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 5KB - Virtual size: 4KB

.gnu_deb Size: 17KB - Virtual size: 17KB

04:7a:55
Certificate

04:7a:53
Certificate

4e:03:19:b2:d3:55:1e:ae:21:1c:0e:6f:8d:f6:18:28
Certificate

1b:c7:c1:95:57:12:21:be:06:82:3f:86:d1:ad:13:d1:32:d8:67:98
Signer

06-02-2013 22:13
Valid: false

.text
Size: 14KB - Virtual size: 14KB

.data
Size: 512B - Virtual size: 164B

.rdata
Size: 2KB - Virtual size: 1KB

.bss
Size: - Virtual size: 1KB

.idata
Size: 4KB - Virtual size: 4KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 5KB - Virtual size: 4KB

.gnu_deb
Size: 17KB - Virtual size: 17KB