7afd67eb6b7a0d110c6e1622eb0c11442550774fbbca9af6d9755506c939d590

General

Target

7afd67eb6b7a0d110c6e1622eb0c11442550774fbbca9af6d9755506c939d590
Size

137KB
MD5

34fe75fca25f7be0b0e1c0b50bb15696
SHA1

3e3f62e890aefba355e3d55592b535e5b4843dac
SHA256

7afd67eb6b7a0d110c6e1622eb0c11442550774fbbca9af6d9755506c939d590
SHA512

0165799950014b347bbf77f1bdf1a4a4231a67bc10c58d4b929c19d37ceb20dc04cf508b465562b00166418499e0adc7bb4d61277d8932add53f17436c1e1698
SSDEEP

3072:PwiILGd30PGzJ4Jw6OwX7L4ue8OOSny8dO7hU3yjIQh+:Yi50PPw61Iue8OOmy8Tykh

Score

N/A

Malware Config

Signatures

Files

7afd67eb6b7a0d110c6e1622eb0c11442550774fbbca9af6d9755506c939d590
.exe windows x86

9267e8c5e4591ba9d8a49b1028d4ff08

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygwin1

__assert_func
__ctype_ptr__
__errno
__getreent
__main
__mb_cur_max
_dll_crt0@0
_exit
_fcntl64
_fopen64
_impure_ptr
_lseek64
_open64
_stat64
abort
atexit
btowc
calloc
close
closedir
cygwin_detach_dll
cygwin_internal
dll_dllcrt0
exit
fclose
fflush
fileno
fprintf
fputc
fputs
fread
free
fwrite
getc_unlocked
getenv
getpagesize
isatty
iswctype
iswprint
malloc
mbrlen
mbrtowc
mbsinit
mbsrtowcs
memcpy
memmove
mempcpy
memset
opendir
printf
putc_unlocked
putchar
read
readdir
realloc
setlocale
setmode
strcasecmp
strcat
strchr
strcmp
strcpy
strcspn
strerror_r
strlen
strncmp
strrchr
strtoumax
tolower
towlower
vfprintf
wcrtomb
wcscat
wcslen
wctype
wmemchr
wmemcpy

cygintl-8

libintl_bindtextdomain
libintl_gettext
libintl_textdomain

cyggcc_s-1

__deregister_frame_info
__register_frame_info
__udivdi3
__umoddi3

kernel32

GetModuleHandleA
GetProcAddress

Sections

.text
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 70KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9267e8c5e4591ba9d8a49b1028d4ff08

Headers

DLL Characteristics

File Characteristics

Imports

cygwin1

cygintl-8

cyggcc_s-1

kernel32

Sections

.text Size: 54KB - Virtual size: 53KB

.data Size: 11KB - Virtual size: 10KB

/4 Size: 512B - Virtual size: 4B

.bss Size: - Virtual size: 2KB

.idata Size: 70KB - Virtual size: 72KB

.text
Size: 54KB - Virtual size: 53KB

.data
Size: 11KB - Virtual size: 10KB

/4
Size: 512B - Virtual size: 4B

.bss
Size: - Virtual size: 2KB

.idata
Size: 70KB - Virtual size: 72KB