520c141d1c4a1b4e913ed4f42ae595f81469d1f27af1b917da80bf1b6e2d2643

General

Target

520c141d1c4a1b4e913ed4f42ae595f81469d1f27af1b917da80bf1b6e2d2643
Size

173KB
MD5

835ccdd5ad9c4766f0a626b630f94477
SHA1

16eb5a232549cdd238bda8d2b419c4e90adad2ea
SHA256

520c141d1c4a1b4e913ed4f42ae595f81469d1f27af1b917da80bf1b6e2d2643
SHA512

899566b620f323e19545494d1e663995dc4ddb6aae2a16ccf3e8ae0942923cd7e4d4a254308efcbb746c0c6f99ec7ce87d8ab9830ce6bc90692b4f0ae8033a3b
SSDEEP

3072:YrkXF1oJ612JkdxOF2MMS0z2gE7j0b5mNKJ91MmZFGEnHSdU2LBNLL8dP2iGH+5L:YrkV1oGjMcs0q291MmZFGEnI/LwdP6mR

Score

N/A

Malware Config

Signatures

Files

520c141d1c4a1b4e913ed4f42ae595f81469d1f27af1b917da80bf1b6e2d2643
.exe windows x86

3f641f03d65c7c99620c8506856154a8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygwin1

__errno
__getreent
__main
_dll_crt0@0
_exit
_fopen64
_impure_ptr
_tmpfile64
abort
calloc
cygwin_create_path
cygwin_detach_dll
cygwin_internal
dll_dllcrt0
exit
fclose
fflush
fgets
fprintf
fputc
fputs
fread
free
fwrite
getc
getenv
isalnum
isalpha
iscntrl
isgraph
islower
isprint
ispunct
isspace
isupper
isxdigit
malloc
memcpy
perror
printf
putc
realloc
rewind
sprintf
sqrt
sscanf
strcasecmp
strcat
strchr
strcmp
strcpy
strlen
strncmp
strncpy
strtok
strtol
tan
ungetc
vfprintf
vsnprintf
write

cyggcc_s-1

_Unwind_Resume
__deregister_frame_info
__register_frame_info

cygstdc++-6

_ZdaPv
_Znaj
__cxa_pure_virtual
__gxx_personality_v0

kernel32

GetModuleFileNameW
GetModuleHandleA
GetProcAddress
GetStdHandle
VirtualProtect
VirtualQuery
WriteFile

Sections

.text
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 78KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3f641f03d65c7c99620c8506856154a8

Headers

DLL Characteristics

File Characteristics

Imports

cygwin1

cyggcc_s-1

cygstdc++-6

kernel32

Sections

.text Size: 70KB - Virtual size: 70KB

.data Size: 17KB - Virtual size: 16KB

/4 Size: 6KB - Virtual size: 6KB

.bss Size: - Virtual size: 7KB

.idata Size: 78KB - Virtual size: 80KB

.text
Size: 70KB - Virtual size: 70KB

.data
Size: 17KB - Virtual size: 16KB

/4
Size: 6KB - Virtual size: 6KB

.bss
Size: - Virtual size: 7KB

.idata
Size: 78KB - Virtual size: 80KB