6508c5dbaf56389dad775978724fd3acc06583c38c6cc98e5a3d32625c7690cb

Sharing

Copy URL Twitter E-mail

General

Target

6508c5dbaf56389dad775978724fd3acc06583c38c6cc98e5a3d32625c7690cb
Size

159KB
MD5

1aa15083da83d3b20ece4efcce153c50
SHA1

1f851c85903903b52654fa3c5b05059324a222e3
SHA256

6508c5dbaf56389dad775978724fd3acc06583c38c6cc98e5a3d32625c7690cb
SHA512

16662ca54c60a342964fd89b2cf9e56f08843c6946fc3f05aa9176a520e3d6f3d7a9eb73b9bde51c00bb3e0097ddbc740d919eaa83defd3cbfb1c7327556a449
SSDEEP

3072:VgACaWywMU6XYxKMHrRL4xBdzmBHTaNSONmtFu5:IaeKMLV4xBJkASYma5

Score

N/A

Malware Config

Signatures

Files

6508c5dbaf56389dad775978724fd3acc06583c38c6cc98e5a3d32625c7690cb
.exe windows x86

b36e24e2075f898312b0fdaaf2916ab9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygwin1

__assert
__errno
__getreent
__main
_ctype_
_fdopen64
_fopen64
_impure_ptr
atof
atoi
calloc
closedir
cygwin_internal
dll_crt0__FP11per_process
exit
fclose
fgets
fprintf
fputc
fread
free
fwrite
getenv
getopt
malloc
memcpy
memmove
memset
opendir
optarg
optind
pclose
perror
popen
printf
putchar
qsort
read
readdir
realloc
rewind
setmode
sprintf
sscanf
strcasecmp
strcat
strchr
strcmp
strcoll
strcpy
strdup
strerror
strlen
strncasecmp
strncat
strncpy
strrchr
strstr
strtol
write
_fdopen64
_fopen64
atan
ceil
exp
log
sqrt

cygfreetype-6

FT_Done_Face
FT_Done_FreeType
FT_Done_Glyph
FT_Get_Char_Index
FT_Get_First_Char
FT_Get_Glyph
FT_Get_Kerning
FT_Get_Next_Char
FT_Init_FreeType
FT_Load_Char
FT_Load_Glyph
FT_New_Face
FT_Render_Glyph
FT_Select_Charmap
FT_Set_Char_Size
FT_Set_Charmap
FT_Set_Pixel_Sizes

cygfribidi-0

fribidi_charset_to_unicode
fribidi_log2vis
fribidi_parse_charset
fribidi_remove_bidi_marks
fribidi_set_mirroring
fribidi_set_reorder_nsm
fribidi_unicode_to_charset

cygiconv-2

libiconv
libiconv_close
libiconv_open

cygpng12

png_create_info_struct
png_create_read_struct
png_destroy_read_struct
png_get_IHDR
png_get_channels
png_get_rows
png_init_io
png_read_png
png_set_sig_bytes
png_sig_cmp

cygxml2-2

xmlFree
xmlFreeTextReader
xmlReaderForIO
xmlTextReaderDepth
xmlTextReaderIsEmptyElement
xmlTextReaderMoveToNextAttribute
xmlTextReaderName
xmlTextReaderNodeType
xmlTextReaderRead
xmlTextReaderValue
xmlFree
xmlFree
xmlFree

kernel32

GetModuleFileNameA
GetModuleHandleA
MultiByteToWideChar
WideCharToMultiByte

Sections

.text
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b36e24e2075f898312b0fdaaf2916ab9

Headers

File Characteristics

Imports

cygwin1

cygfreetype-6

cygfribidi-0

cygiconv-2

cygpng12

cygxml2-2

kernel32

Sections

.text Size: 70KB - Virtual size: 70KB

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 10KB - Virtual size: 9KB

.bss Size: - Virtual size: 2KB

.idata Size: 76KB - Virtual size: 76KB

.text
Size: 70KB - Virtual size: 70KB

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 10KB - Virtual size: 9KB

.bss
Size: - Virtual size: 2KB

.idata
Size: 76KB - Virtual size: 76KB