86503294eb9a5976aae03e41c4899e71fd1ef91ed1a3f9c3cb152da401a9f858

Sharing

Copy URL Twitter E-mail

General

Target

86503294eb9a5976aae03e41c4899e71fd1ef91ed1a3f9c3cb152da401a9f858
Size

172KB
MD5

9d9a52231826e2d9487f14f0398bec12
SHA1

4bcb56c731ec69cd98f617d9eaf56d0c8cbd8431
SHA256

86503294eb9a5976aae03e41c4899e71fd1ef91ed1a3f9c3cb152da401a9f858
SHA512

e0568a4a9fdced6b3fe42955e450c11e97b34282b0a0bddde2947a1b6ef656a42f03bc726aac17caed1696199707ca74ad2f4b7fc831af6da0ea5c02942b73f2
SSDEEP

3072:Y6Io2KLAWWzUvZN4zMFo88xr4hYC9jJTv5skl:7IFKLAa/Q0o1xrRCRD5l

Score

N/A

Malware Config

Signatures

Files

86503294eb9a5976aae03e41c4899e71fd1ef91ed1a3f9c3cb152da401a9f858
.exe windows x86

10330aaa0dd7e9c9781f999348b35973

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

libgimpui-2.0-0

gimp_ui_init

kernel32

ExitProcess
GetModuleHandleA
GetProcAddress
SetUnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

__getmainargs
__p___argc
__p___argv
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_onexit
_setmode
atexit
memcpy
memset
signal
strcmp

libgimp-2.0-0

gimp_destroy_params
gimp_drawable_delete
gimp_drawable_detach
gimp_drawable_get
gimp_drawable_get_image
gimp_drawable_get_thumbnail_data
gimp_drawable_has_alpha
gimp_drawable_height
gimp_drawable_is_indexed
gimp_drawable_is_valid
gimp_drawable_type
gimp_drawable_width
gimp_extension_enable
gimp_get_default_unit
gimp_image_attach_new_parasite
gimp_image_get_colormap
gimp_image_get_name
gimp_image_get_resolution
gimp_image_get_unit
gimp_image_is_valid
gimp_image_parasite_find
gimp_install_procedure
gimp_install_temp_proc
gimp_layer_new_from_visible
gimp_main
gimp_pixel_rgn_init
gimp_pixel_rgns_process
gimp_pixel_rgns_register
gimp_plugin_icon_register
gimp_plugin_menu_register
gimp_plugin_set_pdb_error_handler
gimp_progress_end
gimp_progress_init
gimp_progress_update
gimp_run_procedure
gimp_uninstall_temp_proc

libgimpbase-2.0-0

gimp_directory
gimp_filename_to_utf8
gimp_locale_directory
gimp_parasite_data
gimp_parasite_data_size
gimp_parasite_free
gimp_unit_get_digits
gimp_unit_get_factor
gimp_unit_get_plural

libgimpwidgets-2.0-0

gimp_chain_button_get_active
gimp_chain_button_get_type
gimp_chain_button_new
gimp_chain_button_set_active
gimp_frame_new
gimp_help_connect
gimp_int_combo_box_connect
gimp_int_combo_box_get_active
gimp_int_combo_box_get_type
gimp_int_combo_box_new
gimp_int_combo_box_set_active
gimp_size_entry_add_field
gimp_size_entry_attach_label
gimp_size_entry_get_refval
gimp_size_entry_get_type
gimp_size_entry_get_unit
gimp_size_entry_get_value
gimp_size_entry_new
gimp_size_entry_set_refval
gimp_size_entry_set_refval_boundaries
gimp_size_entry_set_resolution
gimp_size_entry_set_value
gimp_size_entry_set_value_boundaries
gimp_spin_button_new
gimp_standard_help_func

libcairo-2

cairo_destroy
cairo_fill
cairo_image_surface_create
cairo_image_surface_get_data
cairo_image_surface_get_height
cairo_image_surface_get_stride
cairo_image_surface_get_width
cairo_rectangle
cairo_scale
cairo_set_line_width
cairo_set_source_surface
cairo_stroke
cairo_stroke_preserve
cairo_surface_destroy
cairo_translate

libgdk-win32-2.0-0

gdk_cairo_create
gdk_cairo_set_source_color
gdk_cursor_new_for_display
gdk_cursor_unref
gdk_display_pointer_ungrab
gdk_pointer_grab
gdk_window_set_cursor

libglib-2.0-0

g_assertion_message
g_build_filename
g_clear_error
g_error_free
g_file_set_contents
g_free
g_intern_static_string
g_key_file_free
g_key_file_get_boolean
g_key_file_get_double
g_key_file_get_integer
g_key_file_get_keys
g_key_file_get_value
g_key_file_has_group
g_key_file_has_key
g_key_file_load_from_data
g_key_file_load_from_file
g_key_file_new
g_key_file_remove_key
g_key_file_set_boolean
g_key_file_set_double
g_key_file_set_integer
g_key_file_set_value
g_key_file_to_data
g_log
g_once_init_enter_impl
g_once_init_leave
g_return_if_fail_warning
g_strdup_printf
g_strfreev
g_timeout_add_seconds

libgobject-2.0-0

g_object_new
g_object_unref
g_signal_connect_data
g_signal_connect_object
g_signal_emit
g_signal_handlers_block_matched
g_signal_handlers_unblock_matched
g_signal_new
g_type_check_class_cast
g_type_check_instance_cast
g_type_check_instance_is_a
g_type_class_peek_parent
g_type_register_static_simple
g_value_peek_pointer

libgthread-2.0-0

g_thread_init

libgtk-win32-2.0-0

gtk_box_get_type
gtk_box_pack_start
gtk_check_button_new_with_mnemonic
gtk_container_add
gtk_container_get_type
gtk_container_set_border_width
gtk_dialog_get_type
gtk_dialog_run
gtk_event_box_get_type
gtk_event_box_set_visible_window
gtk_hbox_new
gtk_label_get_type
gtk_label_new_with_mnemonic
gtk_label_set_mnemonic_widget
gtk_label_set_text
gtk_message_dialog_format_secondary_text
gtk_message_dialog_get_type
gtk_message_dialog_new
gtk_misc_get_type
gtk_misc_set_alignment
gtk_object_get_type
gtk_page_setup_copy
gtk_page_setup_get_bottom_margin
gtk_page_setup_get_left_margin
gtk_page_setup_get_page_height
gtk_page_setup_get_page_width
gtk_page_setup_get_paper_height
gtk_page_setup_get_paper_width
gtk_page_setup_get_right_margin
gtk_page_setup_get_top_margin
gtk_page_setup_get_type
gtk_page_setup_new
gtk_page_setup_new_from_key_file
gtk_page_setup_to_key_file
gtk_print_context_get_cairo_context
gtk_print_context_get_dpi_x
gtk_print_context_get_dpi_y
gtk_print_operation_get_default_page_setup
gtk_print_operation_get_print_settings
gtk_print_operation_get_type
gtk_print_operation_new
gtk_print_operation_run
gtk_print_operation_set_custom_tab_label
gtk_print_operation_set_default_page_setup
gtk_print_operation_set_job_name
gtk_print_operation_set_n_pages
gtk_print_operation_set_print_settings
gtk_print_operation_set_unit
gtk_print_operation_set_use_full_page
gtk_print_run_page_setup_dialog
gtk_print_settings_foreach
gtk_print_settings_new
gtk_print_settings_set
gtk_size_group_add_widget
gtk_size_group_new
gtk_spin_button_get_type
gtk_table_attach
gtk_table_attach_defaults
gtk_table_get_type
gtk_table_new
gtk_table_set_col_spacing
gtk_table_set_col_spacings
gtk_table_set_row_spacings
gtk_toggle_button_get_active
gtk_toggle_button_get_type
gtk_toggle_button_set_active
gtk_true
gtk_vbox_new
gtk_widget_add_events
gtk_widget_destroy
gtk_widget_get_direction
gtk_widget_get_display
gtk_widget_get_style
gtk_widget_get_type
gtk_widget_queue_draw
gtk_widget_queue_resize
gtk_widget_show

intl

libintl_bind_textdomain_codeset
libintl_bindtextdomain
libintl_gettext
libintl_textdomain

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 352B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

10330aaa0dd7e9c9781f999348b35973

Headers

File Characteristics

Imports

libgimpui-2.0-0

kernel32

msvcrt

libgimp-2.0-0

libgimpbase-2.0-0

libgimpwidgets-2.0-0

libcairo-2

libgdk-win32-2.0-0

libglib-2.0-0

libgobject-2.0-0

libgthread-2.0-0

libgtk-win32-2.0-0

intl

Sections

.text Size: 29KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 16B

.rdata Size: 3KB - Virtual size: 2KB

.bss Size: - Virtual size: 352B

.idata Size: 10KB - Virtual size: 9KB

.tdata Size: 68KB - Virtual size: 68KB

.text
Size: 29KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 16B

.rdata
Size: 3KB - Virtual size: 2KB

.bss
Size: - Virtual size: 352B

.idata
Size: 10KB - Virtual size: 9KB

.tdata
Size: 68KB - Virtual size: 68KB