a7eb5c2418100a04c93570fa91dffe320d859540b67005f53b1540641b41f790

General

Target

a7eb5c2418100a04c93570fa91dffe320d859540b67005f53b1540641b41f790
Size

180KB
MD5

a372454727710bfdd4950dcfac4c89a4
SHA1

aeddc1b7dd82946ff5b95ce18f7df685bc466354
SHA256

a7eb5c2418100a04c93570fa91dffe320d859540b67005f53b1540641b41f790
SHA512

c3c770118f75f9d5985e6d11107426f11fcdfe5a3f3e2538091c21f9a3b53cc42240e4f2b31268251e571a4abb5da980b8912fdfb5bcc5bfc17f87f84040029d
SSDEEP

3072:mFqQ/UDrOHdks7DNLgo/PmnpurOOrrVXi03YsetlL+xROIzs22+zionA5lei:LIH5PYBroROP2mzei

Score

N/A

Malware Config

Signatures

Files

a7eb5c2418100a04c93570fa91dffe320d859540b67005f53b1540641b41f790
.exe windows x86

5c2298bfea5b616f61a7e4b501d29b0d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygcrypto-0.9.8

DES_ecb_encrypt
DES_set_key
DES_set_odd_parity
ERR_error_string
ERR_get_error
MD4_Final
MD4_Init
MD4_Update
MD5_Final
MD5_Init
MD5_Update
RSA_generate_key

cygwin1

__assert
__errno
__getreent
__main
_ctype_
_fcntl64
_fopen64
_getuid32
_impure_ptr
alarm
atoi
bind
calloc
close
connect
cygwin_internal
dll_crt0__FP11per_process
exit
fclose
fflush
fgets
fork
fprintf
fputc
fread
free
fwrite
getenv
gethostbyname
getopt
getpid
gettimeofday
index
inet_aton
inet_ntoa
kill
localtime
malloc
memcpy
memset
optarg
optind
perror
printf
putchar
puts
rand
read
realloc
recv
rewind
rindex
select
send
setvbuf
signal
sleep
snprintf
socket
socketpair
sprintf
sscanf
strcat
strchr
strcmp
strcpy
strdup
strftime
strlen
strncasecmp
strncpy
strsep
strstr
strtok
strtoul
time
unlink
usleep
wait3
write
_fcntl64
_fopen64
_getuid32
floor

cygssl-0.9.8

SSL_CIPHER_get_name
SSL_CTX_ctrl
SSL_CTX_new
SSL_CTX_set_default_verify_paths
SSL_CTX_set_tmp_rsa_callback
SSL_CTX_set_verify
SSL_connect
SSL_get_current_cipher
SSL_library_init
SSL_load_error_strings
SSL_new
SSL_read
SSL_set_fd
SSL_write
SSLv23_method

kernel32

GetModuleHandleA

Sections

.text
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5c2298bfea5b616f61a7e4b501d29b0d

Headers

File Characteristics

Imports

cygcrypto-0.9.8

cygwin1

cygssl-0.9.8

kernel32

Sections

.text Size: 105KB - Virtual size: 105KB

.data Size: 6KB - Virtual size: 5KB

.rdata Size: 25KB - Virtual size: 25KB

.bss Size: - Virtual size: 5KB

.idata Size: 3KB - Virtual size: 3KB

.text
Size: 105KB - Virtual size: 105KB

.data
Size: 6KB - Virtual size: 5KB

.rdata
Size: 25KB - Virtual size: 25KB

.bss
Size: - Virtual size: 5KB

.idata
Size: 3KB - Virtual size: 3KB