f57238aae26728973192dd620d9e48415b8648cb2d71811aba0c46ccd88df0d3

Sharing

Copy URL Twitter E-mail

General

Target

f57238aae26728973192dd620d9e48415b8648cb2d71811aba0c46ccd88df0d3
Size

336KB
MD5

7a692fb06afcc89ad8a4323a870893ad
SHA1

7bddea0da118eb03bdc16a6a065d4013c1f1fb56
SHA256

f57238aae26728973192dd620d9e48415b8648cb2d71811aba0c46ccd88df0d3
SHA512

f233bc6c31bdd01e64bac3a9c3edb18a9b4f9cd908b7e63ea60558b343bfc141928fbbe7a9dcccd07298768406e6826703d7b9a975e12ae95a95dbe6a4c98ac0
SSDEEP

6144:4VdLHim25NPspA6VTT6W0NPu2hJLblWkPyxkvQ/y2Ly11RsKLIYUZ3bCg1:43LimQFspNTTtguoblW6462LjtX1

Score

N/A

Malware Config

Signatures

Files

f57238aae26728973192dd620d9e48415b8648cb2d71811aba0c46ccd88df0d3
.exe windows x86

daced57b522326fa06b505e46b943848

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygwin1

__assert_func
__ctype_ptr__
__errno
__fpclassifyd
__getreent
__locale_mb_cur_max
__main
_dll_crt0@0
_exit
_fcntl64
_fdopen64
_fopen64
_fstat64
_getegid32
_geteuid32
_getgid32
_getgroups32
_getuid32
_impure_ptr
_open64
_stat64
abort
accept
access
atan2
atof
bind
btowc
calloc
ceil
close
connect
cos
ctime
cygwin_detach_dll
cygwin_internal
dlerror
dll_dllcrt0
dlopen
dlsym
dup
dup2
execl
exit
exp
fclose
fflush
fgets
fileno
floor
fmod
fork
fprintf
fputc
fputs
free
freeaddrinfo
fwrite
getaddrinfo
getenv
getpgrp
getpid
getppid
gmtime
grantpt
isalnum
isalpha
isatty
iscntrl
isdigit
isgraph
islower
isprint
ispunct
isspace
isupper
iswalnum
iswalpha
iswctype
iswlower
iswupper
isxdigit
kill
listen
localeconv
localtime
log
longjmp
malloc
mbrlen
mbrtowc
mbsinit
memchr
memcpy
memmove
memset
mktime
nl_langinfo
pclose
pipe
popen
pow
printf
ptsname
putc
putchar
puts
qsort
read
realloc
recvfrom
setlocale
setmode
setsockopt
shutdown
signal
sin
snprintf
socket
sprintf
sqrt
sscanf
strcasecmp
strcat
strchr
strcmp
strcoll
strcpy
strerror
strftime
strlen
strncasecmp
strncmp
strncpy
strrchr
strtod
strtol
strtoul
system
tcgetattr
tcsetattr
time
tolower
toupper
towlower
towupper
unlockpt
usleep
vfprintf
wait
wcrtomb
wcscoll
wcslen
wctob
wctype

cygintl-8

libintl_bindtextdomain
libintl_dcgettext
libintl_dcngettext
libintl_dgettext
libintl_gettext
libintl_textdomain

cyggcc_s-1

__deregister_frame_info
__fixunsdfdi
__register_frame_info
__udivdi3
__umoddi3

cygsigsegv-2

sigsegv_install_handler
stackoverflow_install_handler

kernel32

GetModuleHandleA
GetProcAddress

Sections

.text
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

daced57b522326fa06b505e46b943848

Headers

DLL Characteristics

File Characteristics

Imports

cygwin1

cygintl-8

cyggcc_s-1

cygsigsegv-2

kernel32

Sections

.text Size: 277KB - Virtual size: 277KB

.data Size: 49KB - Virtual size: 49KB

/4 Size: 512B - Virtual size: 4B

.bss Size: - Virtual size: 16KB

.idata Size: 8KB - Virtual size: 7KB

.text
Size: 277KB - Virtual size: 277KB

.data
Size: 49KB - Virtual size: 49KB

/4
Size: 512B - Virtual size: 4B

.bss
Size: - Virtual size: 16KB

.idata
Size: 8KB - Virtual size: 7KB