52ff111544fa2a189dcec99c00e90ea9

Sharing

Copy URL Twitter E-mail

General

Target

52ff111544fa2a189dcec99c00e90ea9
Size

1.4MB
MD5

52ff111544fa2a189dcec99c00e90ea9
SHA1

be45ee55d7d911fdb85d4532ca2e4d20cfdbd2c4
SHA256

2a865f1482ad2c254a1b14fd35ecb58356d1b73ac9ed6df0061fec19e8cd7454
SHA512

098a02a93771d6fcfddb473004532e8023609cf90f308ce9cb4ebccba0fe35d635bc8ce0058adee8a2f75f6eecb9efe513b79c95a04247337ecebdccdb84e4ea
SSDEEP

24576:4FcjpeD11UgxdVzOzsJ/RokNbLVGBKwihVcfYNovuaw8K0ZulxE2ZYV7u:4Ojp/gxdFOQZykNbLVQuVYYJjxHlx1+I

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 11 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/lib/auto/Cwd/Cwd.dll	acprotect
static1/unpack001/lib/auto/Fcntl/Fcntl.dll	acprotect
static1/unpack001/lib/auto/File/Glob/Glob.dll	acprotect
static1/unpack001/lib/auto/IO/IO.dll	acprotect
static1/unpack001/lib/auto/List/Util/Util.dll	acprotect
static1/unpack001/lib/auto/PerlIO/encoding/encoding.dll	acprotect
static1/unpack001/lib/auto/PerlIO/scalar/scalar.dll	acprotect
static1/unpack001/lib/auto/PerlIO/via/via.dll	acprotect
static1/unpack001/lib/auto/Socket/Socket.dll	acprotect
static1/unpack001/lib/auto/re/re.dll	acprotect
static1/unpack001/perl58.dll	acprotect

UPX packed file 11 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/lib/auto/Cwd/Cwd.dll	upx
static1/unpack001/lib/auto/Fcntl/Fcntl.dll	upx
static1/unpack001/lib/auto/File/Glob/Glob.dll	upx
static1/unpack001/lib/auto/IO/IO.dll	upx
static1/unpack001/lib/auto/List/Util/Util.dll	upx
static1/unpack001/lib/auto/PerlIO/encoding/encoding.dll	upx
static1/unpack001/lib/auto/PerlIO/scalar/scalar.dll	upx
static1/unpack001/lib/auto/PerlIO/via/via.dll	upx
static1/unpack001/lib/auto/Socket/Socket.dll	upx
static1/unpack001/lib/auto/re/re.dll	upx
static1/unpack001/perl58.dll	upx

Unsigned PE 22 IoCs

Checks for missing Authenticode signature.

resource
unpack001/conhost.exe
unpack001/lib/auto/Cwd/Cwd.dll
unpack002/out.upx
unpack001/lib/auto/Fcntl/Fcntl.dll
unpack003/out.upx
unpack001/lib/auto/File/Glob/Glob.dll
unpack004/out.upx
unpack001/lib/auto/IO/IO.dll
unpack005/out.upx
unpack001/lib/auto/List/Util/Util.dll
unpack006/out.upx
unpack001/lib/auto/PerlIO/encoding/encoding.dll
unpack007/out.upx
unpack001/lib/auto/PerlIO/scalar/scalar.dll
unpack008/out.upx
unpack001/lib/auto/PerlIO/via/via.dll
unpack009/out.upx
unpack001/lib/auto/Socket/Socket.dll
unpack001/lib/auto/re/re.dll
unpack001/libeay32.dll
unpack001/perl58.dll
unpack001/ssleay32.dll

Files

52ff111544fa2a189dcec99c00e90ea9
.zip
conhost.exe
.exe .js windows:4 windows x86 arch:x86 polyglot

efcb43a6574fd48d389eb490e5ba28ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__setusermatherr
strcmp
strcpy
malloc
strlen
_strdup
_exit
_XcptFilter
exit
__p___initenv
__getmainargs
_initterm
sprintf
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

perl58

RunPerl

Sections

.text
Size: 4KB - Virtual size: 796B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 534B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 956B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
lib/Archive/Zip.pm
.ps1
lib/AutoLoader.pm
lib/Carp.pm
lib/Carp/Heavy.pm
lib/Compress/Zlib.pm
lib/Config.pm
lib/Cwd.pm
lib/DB.pm
lib/Digest.pm
lib/Digest/HMAC.pm
lib/Digest/HMAC_MD5.pm
lib/Digest/HMAC_SHA1.pm
lib/Digest/MD5.pm
lib/Digest/SHA.pm
lib/Digest/SHA1.pm
lib/Digest/base.pm
lib/Digest/file.pm
lib/DynaLoader.pm
lib/Env.pm
lib/Errno.pm
lib/Exporter.pm
lib/Exporter/Heavy.pm
lib/Fcntl.pm
lib/File/Basename.pm
lib/File/CheckTree.pm
lib/File/Compare.pm
lib/File/Copy.pm
lib/File/DosGlob.pm
lib/File/Find.pm
lib/File/Glob.pm
lib/File/Listing.pm
lib/File/Path.pm
lib/File/Spec.pm
lib/File/Spec/Cygwin.pm
lib/File/Spec/Epoc.pm
lib/File/Spec/Functions.pm
lib/File/Spec/Mac.pm
lib/File/Spec/OS2.pm
lib/File/Spec/Unix.pm
lib/File/Spec/VMS.pm
lib/File/Spec/Win32.pm
lib/File/Temp.pm
lib/File/stat.pm
lib/HTTP/Config.pm
lib/HTTP/Cookies.pm
lib/HTTP/Cookies/Microsoft.pm
lib/HTTP/Cookies/Netscape.pm
lib/HTTP/Daemon.pm
lib/HTTP/Date.pm
lib/HTTP/Headers.pm
lib/HTTP/Headers/Auth.pm
lib/HTTP/Headers/ETag.pm
lib/HTTP/Headers/Util.pm
lib/HTTP/Message.pm
lib/HTTP/Negotiate.pm
lib/HTTP/Request.pm
lib/HTTP/Request/Common.pm
lib/HTTP/Response.pm
lib/HTTP/Status.pm
lib/IO.pm
lib/IO/AtomicFile.pm
lib/IO/Compress/Adapter/Bzip2.pm
lib/IO/Compress/Adapter/Deflate.pm
lib/IO/Compress/Adapter/Identity.pm
lib/IO/Compress/Base.pm
lib/IO/Compress/Base/Common.pm
lib/IO/Compress/Bzip2.pm
lib/IO/Compress/Deflate.pm
lib/IO/Compress/Gzip.pm
lib/IO/Compress/Gzip/Constants.pm
lib/IO/Compress/RawDeflate.pm
lib/IO/Compress/Zip.pm
lib/IO/Compress/Zip/Constants.pm
lib/IO/Compress/Zlib/Constants.pm
lib/IO/Compress/Zlib/Extra.pm
lib/IO/Dir.pm
lib/IO/File.pm
lib/IO/Handle.pm
lib/IO/InnerFile.pm
lib/IO/Lines.pm
lib/IO/Pipe.pm
lib/IO/Poll.pm
lib/IO/Scalar.pm
lib/IO/ScalarArray.pm
lib/IO/Seekable.pm
lib/IO/Select.pm
lib/IO/Socket.pm
lib/IO/Socket/INET.pm
lib/IO/Socket/UNIX.pm
lib/IO/String.pm
lib/IO/Stringy.pm
lib/IO/Uncompress/Adapter/Bunzip2.pm
lib/IO/Uncompress/Adapter/Identity.pm
lib/IO/Uncompress/Adapter/Inflate.pm
lib/IO/Uncompress/AnyInflate.pm
lib/IO/Uncompress/AnyUncompress.pm
lib/IO/Uncompress/Base.pm
lib/IO/Uncompress/Bunzip2.pm
lib/IO/Uncompress/Gunzip.pm
lib/IO/Uncompress/Inflate.pm
lib/IO/Uncompress/RawInflate.pm
lib/IO/Uncompress/Unzip.pm
lib/IO/Wrap.pm
lib/IO/WrapTie.pm
lib/IO/Zlib.pm
lib/LWP.pm
lib/LWP/Authen/Basic.pm
lib/LWP/Authen/Digest.pm
lib/LWP/Authen/Ntlm.pm
lib/LWP/ConnCache.pm
lib/LWP/Debug.pm
lib/LWP/DebugFile.pm
lib/LWP/MediaTypes.pm
lib/LWP/MemberMixin.pm
lib/LWP/Protocol.pm
lib/LWP/Protocol/GHTTP.pm
lib/LWP/Protocol/cpan.pm
lib/LWP/Protocol/data.pm
lib/LWP/Protocol/file.pm
lib/LWP/Protocol/ftp.pm
lib/LWP/Protocol/gopher.pm
lib/LWP/Protocol/http.pm
lib/LWP/Protocol/http10.pm
lib/LWP/Protocol/https.pm
lib/LWP/Protocol/https10.pm
lib/LWP/Protocol/loopback.pm
lib/LWP/Protocol/mailto.pm
lib/LWP/Protocol/nntp.pm
lib/LWP/Protocol/nogo.pm
lib/LWP/RobotUA.pm
lib/LWP/Simple.pm
lib/LWP/UserAgent.pm
lib/LWP/media.types
lib/List/Util.pm
lib/POSIX.pm
lib/PerlIO.pm
lib/PerlIO/encoding.pm
lib/PerlIO/scalar.pm
lib/PerlIO/via.pm
lib/PerlIO/via/QuotedPrint.pm
lib/Safe.pm
lib/Scalar/Util.pm
lib/SelectSaver.pm
lib/Socket.pm
lib/Symbol.pm
lib/Tie/Handle.pm
lib/Time/Local.pm
lib/UNIVERSAL.pm
lib/URI.pm
lib/URI/Escape.pm
lib/URI/Heuristic.pm
lib/URI/IRI.pm
lib/URI/QueryParam.pm
lib/URI/Split.pm
lib/URI/URL.pm
lib/URI/WithBase.pm
lib/URI/_foreign.pm
lib/URI/_generic.pm
lib/URI/_idna.pm
lib/URI/_ldap.pm
lib/URI/_login.pm
lib/URI/_punycode.pm
lib/URI/_query.pm
lib/URI/_segment.pm
lib/URI/_server.pm
lib/URI/_userpass.pm
lib/URI/data.pm
lib/URI/file.pm
lib/URI/file/Base.pm
lib/URI/file/FAT.pm
lib/URI/file/Mac.pm
lib/URI/file/OS2.pm
lib/URI/file/QNX.pm
lib/URI/file/Unix.pm
lib/URI/file/Win32.pm
lib/URI/ftp.pm
lib/URI/gopher.pm
lib/URI/http.pm
lib/URI/https.pm
lib/URI/ldap.pm
lib/URI/ldapi.pm
lib/URI/ldaps.pm
lib/URI/mailto.pm
lib/URI/mms.pm
lib/URI/news.pm
lib/URI/nntp.pm
lib/URI/pop.pm
lib/URI/rlogin.pm
lib/URI/rsync.pm
lib/URI/rtsp.pm
lib/URI/rtspu.pm
lib/URI/sip.pm
lib/URI/sips.pm
lib/URI/snews.pm
lib/URI/ssh.pm
lib/URI/telnet.pm
lib/URI/tn3270.pm
lib/URI/urn.pm
lib/URI/urn/isbn.pm
lib/URI/urn/oid.pm
lib/XSLoader.pm
lib/attributes.pm
lib/auto/Compress/Zlib/autosplit.ix
lib/auto/Cwd/Cwd.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_boot_Cwd
boot_Cwd

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 210B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lib/auto/Cwd/Cwd.exp
lib/auto/Cwd/Cwd.lib
lib/auto/DynaLoader/autosplit.ix
lib/auto/DynaLoader/dl_expandspec.al
lib/auto/DynaLoader/dl_find_symbol_anywhere.al
lib/auto/DynaLoader/dl_findfile.al
lib/auto/Fcntl/Fcntl.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_boot_Fcntl
boot_Fcntl

Sections

UPX0
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 909B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 426B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lib/auto/Fcntl/Fcntl.exp
lib/auto/Fcntl/Fcntl.lib
lib/auto/File/Glob/Glob.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_boot_File__Glob
boot_File__Glob

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lib/auto/File/Glob/Glob.exp
lib/auto/File/Glob/Glob.lib
lib/auto/IO/IO.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_boot_IO
boot_IO

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 370B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lib/auto/IO/IO.exp
lib/auto/IO/IO.lib
lib/auto/List/Util/Util.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_boot_List__Util
boot_List__Util

Sections

UPX0
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lib/auto/List/Util/Util.exp
lib/auto/List/Util/Util.lib
lib/auto/PerlIO/encoding/encoding.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_boot_PerlIO__encoding
boot_PerlIO__encoding

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 174B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lib/auto/PerlIO/encoding/encoding.exp
lib/auto/PerlIO/encoding/encoding.lib
lib/auto/PerlIO/scalar/scalar.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_boot_PerlIO__scalar
boot_PerlIO__scalar

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 4KB - Virtual size: 930B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lib/auto/PerlIO/scalar/scalar.exp
lib/auto/PerlIO/scalar/scalar.lib
lib/auto/PerlIO/via/via.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_boot_PerlIO__via
boot_PerlIO__via

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 4KB - Virtual size: 930B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 599B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lib/auto/PerlIO/via/via.exp
lib/auto/PerlIO/via/via.lib
lib/auto/Socket/Socket.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_boot_Socket
boot_Socket

Sections

UPX0
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
lib/auto/Socket/Socket.exp
lib/auto/Socket/Socket.lib
lib/auto/re/re.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_boot_re
boot_re

Sections

UPX0
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
lib/auto/re/re.exp
lib/auto/re/re.lib
lib/base.pm
lib/constant.pm
lib/integer.pm
lib/lib.pm
lib/open.pm
lib/ops.pm
lib/overload.pm
lib/re.pm
lib/strict.pm
lib/utf8.pm
lib/vars.pm
lib/warnings.pm
.vbs
lib/warnings/register.pm
libeay32.dll
.dll windows:4 windows x86 arch:x86

89f345225babfbe999ba7372ae3aeb07

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

GetBitmapBits
GetDeviceCaps
GetObjectA
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
DeleteDC
DeleteObject
BitBlt

kernel32

FreeLibrary
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
CloseHandle
GetLastError
GetProcAddress
GetThreadTimes
GetTickCount
GetVersionExA
GlobalMemoryStatus
LoadLibraryA
QueryPerformanceCounter
SetLastError

msvcrt

_write
_fileno
_getch
_chmod
_lseek
_read
_close
_stat
_assert
_errno
_iob
_setjmp
_setmode
atoi
bsearch
fclose
feof
ferror
fflush
fgets
fopen
fprintf
fputs
fread
free
fseek
ftell
fwrite
getenv
gmtime
isalnum
isdigit
isspace
isupper
isxdigit
localtime
longjmp
malloc
memchr
memcpy
memmove
memset
qsort
realloc
signal
sprintf
sscanf
strcat
strchr
strcmp
strcpy
strerror
strncmp
strncpy
strstr
strtoul
time
tolower

wsock32

WSACancelBlockingCall
WSACleanup
WSAGetLastError
WSASetLastError
WSAStartup
accept
bind
closesocket
connect
gethostbyname
getservbyname
getsockopt
htonl
htons
ioctlsocket
listen
ntohl
ntohs
recv
send
setsockopt
shutdown
socket

Exports

Exports

ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_new
ASN1_BIT_STRING_asn1_meth
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_name_print
ASN1_BIT_STRING_new
ASN1_BIT_STRING_num_asc
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_asc
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_new
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_to_BN
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_HEADER_free
ASN1_HEADER_new
ASN1_IA5STRING_asn1_meth
ASN1_IA5STRING_free
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_to_BN
ASN1_NULL_free
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_new
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_type
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_cmp
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_free
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_new
ASN1_TIME_free
ASN1_TIME_new
ASN1_TIME_print
ASN1_TIME_set
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_set
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_free
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_new
ASN1_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_pack_string
ASN1_parse
ASN1_parse_dump
ASN1_put_object
ASN1_seq_pack
ASN1_seq_unpack
ASN1_sign
ASN1_tag2str
ASN1_unpack_string
ASN1_verify
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_new
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_new
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BIO_accept
BIO_callback_ctrl
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_get_read_request
BIO_ctrl_get_write_guarantee
BIO_ctrl_pending
BIO_ctrl_reset_read_request
BIO_ctrl_wpending
BIO_debug_callback
BIO_dump
BIO_dump_indent
BIO_dup_chain
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_md
BIO_f_nbio_test
BIO_f_null
BIO_f_reliable
BIO_fd_non_fatal_error
BIO_fd_should_retry
BIO_find_type
BIO_free
BIO_free_all
BIO_get_accept_socket
BIO_get_ex_data
BIO_get_ex_new_index
BIO_get_host_ip
BIO_get_port
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_gethostbyname
BIO_gets
BIO_ghbn_ctrl
BIO_int_ctrl
BIO_new
BIO_new_accept
BIO_new_bio_pair
BIO_new_connect
BIO_new_fd
BIO_new_file
BIO_new_fp
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_nread
BIO_nread0
BIO_number_read
BIO_number_written
BIO_nwrite
BIO_nwrite0
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_s_accept
BIO_s_bio
BIO_s_connect
BIO_s_fd
BIO_s_file
BIO_s_mem
BIO_s_null
BIO_s_socket
BIO_set
BIO_set_cipher
BIO_set_ex_data
BIO_set_tcp_ndelay
BIO_snprintf
BIO_sock_cleanup
BIO_sock_error
BIO_sock_init
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_socket_ioctl
BIO_socket_nbio
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_write
BN_BLINDING_convert
BN_BLINDING_free
BN_BLINDING_invert
BN_BLINDING_new
BN_BLINDING_update
BN_CTX_end
BN_CTX_free
BN_CTX_get
BN_CTX_init
BN_CTX_new
BN_CTX_start
BN_MONT_CTX_copy
BN_MONT_CTX_free
BN_MONT_CTX_init
BN_MONT_CTX_new
BN_MONT_CTX_set
BN_RECP_CTX_free
BN_RECP_CTX_init
BN_RECP_CTX_new
BN_RECP_CTX_set
BN_add
BN_add_word
BN_bin2bn
BN_bn2bin
BN_bn2dec
BN_bn2hex
BN_bn2mpi
BN_bntest_rand
BN_clear
BN_clear_bit
BN_clear_free
BN_cmp
BN_copy
BN_dec2bn
BN_div
BN_div_recp
BN_div_word
BN_dup
BN_exp
BN_free
BN_from_montgomery
BN_gcd
BN_generate_prime
BN_get_params
BN_get_word
BN_hex2bn
BN_init
BN_is_bit_set
BN_is_prime
BN_is_prime_fasttest
BN_lshift
BN_lshift1
BN_mask_bits
BN_mod
BN_mod_exp
BN_mod_exp2_mont
BN_mod_exp_mont
BN_mod_exp_mont_word
BN_mod_exp_recp
BN_mod_exp_simple
BN_mod_inverse
BN_mod_mul
BN_mod_mul_montgomery
BN_mod_mul_reciprocal
BN_mod_word
BN_mpi2bn
BN_mul
BN_mul_word
BN_new
BN_num_bits
BN_num_bits_word
BN_options
BN_print
BN_print_fp
BN_pseudo_rand
BN_pseudo_rand_range
BN_rand
BN_rand_range
BN_reciprocal
BN_rshift
BN_rshift1
BN_set_bit
BN_set_params
BN_set_word
BN_sqr
BN_sub
BN_sub_word
BN_to_ASN1_ENUMERATED
BN_to_ASN1_INTEGER
BN_uadd
BN_ucmp
BN_usub
BN_value_one
BUF_MEM_free
BUF_MEM_grow
BUF_MEM_new
BUF_strdup
CAST_cbc_encrypt
CAST_cfb64_encrypt
CAST_decrypt
CAST_ecb_encrypt
CAST_encrypt
CAST_ofb64_encrypt
CAST_set_key
CERTIFICATEPOLICIES_free
CERTIFICATEPOLICIES_new
COMP_CTX_free
COMP_CTX_new
COMP_compress_block
COMP_expand_block
COMP_rle
COMP_zlib
CONF_dump_bio
CONF_dump_fp
CONF_free
CONF_get_number
CONF_get_section
CONF_get_string
CONF_load
CONF_load_bio
CONF_load_fp
CONF_set_default_method
CRL_DIST_POINTS_free
CRL_DIST_POINTS_new
CRYPTO_add_lock
CRYPTO_dbg_free
CRYPTO_dbg_get_options
CRYPTO_dbg_malloc
CRYPTO_dbg_realloc
CRYPTO_dbg_set_options
CRYPTO_destroy_dynlockid
CRYPTO_dup_ex_data
CRYPTO_free
CRYPTO_free_ex_data
CRYPTO_free_locked
CRYPTO_get_add_lock_callback
CRYPTO_get_dynlock_create_callback
CRYPTO_get_dynlock_destroy_callback
CRYPTO_get_dynlock_lock_callback
CRYPTO_get_dynlock_value
CRYPTO_get_ex_data
CRYPTO_get_ex_new_index
CRYPTO_get_id_callback
CRYPTO_get_lock_name
CRYPTO_get_locked_mem_functions
CRYPTO_get_locking_callback
CRYPTO_get_mem_debug_functions
CRYPTO_get_mem_debug_options
CRYPTO_get_mem_functions
CRYPTO_get_new_dynlockid
CRYPTO_get_new_lockid
CRYPTO_is_mem_check_on
CRYPTO_lock
CRYPTO_malloc
CRYPTO_malloc_locked
CRYPTO_mem_ctrl
CRYPTO_mem_leaks
CRYPTO_mem_leaks_cb
CRYPTO_mem_leaks_fp
CRYPTO_new_ex_data
CRYPTO_num_locks
CRYPTO_pop_info
CRYPTO_push_info_
CRYPTO_realloc
CRYPTO_remalloc
CRYPTO_remove_all_info
CRYPTO_set_add_lock_callback
CRYPTO_set_dynlock_create_callback
CRYPTO_set_dynlock_destroy_callback
CRYPTO_set_dynlock_lock_callback
CRYPTO_set_ex_data
CRYPTO_set_id_callback
CRYPTO_set_locked_mem_functions
CRYPTO_set_locking_callback
CRYPTO_set_mem_debug_functions
CRYPTO_set_mem_debug_options
CRYPTO_set_mem_functions
CRYPTO_thread_id
DH_OpenSSL
DH_check
DH_compute_key
DH_free
DH_generate_key
DH_generate_parameters
DH_get_default_method
DH_get_ex_data
DH_get_ex_new_index
DH_new
DH_new_method
DH_set_default_method
DH_set_ex_data
DH_set_method
DH_size
DHparams_print
DHparams_print_fp
DIRECTORYSTRING_free
DIRECTORYSTRING_new
DISPLAYTEXT_free
DISPLAYTEXT_new
DIST_POINT_NAME_free
DIST_POINT_NAME_new
DIST_POINT_free
DIST_POINT_new
DSA_OpenSSL
DSA_SIG_free
DSA_SIG_new
DSA_do_sign
DSA_do_verify
DSA_dup_DH
DSA_free
DSA_generate_key
DSA_generate_parameters
DSA_get_default_method
DSA_get_ex_data
DSA_get_ex_new_index
DSA_new
DSA_new_method
DSA_print
DSA_print_fp
DSA_set_default_method
DSA_set_ex_data
DSA_set_method
DSA_sign
DSA_sign_setup
DSA_size
DSA_verify
DSAparams_print
DSAparams_print_fp
DSO_METHOD_dl
DSO_METHOD_dlfcn
DSO_METHOD_null
DSO_METHOD_openssl
DSO_METHOD_vms
DSO_METHOD_win32
DSO_bind_func
DSO_bind_var
DSO_ctrl
DSO_flags
DSO_free
DSO_get_default_method
DSO_get_method
DSO_load
DSO_new
DSO_new_method
DSO_set_default_method
DSO_set_method
DSO_up
ERR_add_error_data
ERR_clear_error
ERR_error_string
ERR_error_string_n
ERR_free_strings
ERR_func_error_string
ERR_get_err_state_table
ERR_get_error
ERR_get_error_line
ERR_get_error_line_data
ERR_get_next_error_library
ERR_get_state
ERR_get_string_table
ERR_lib_error_string
ERR_load_ASN1_strings
ERR_load_BIO_strings
ERR_load_BN_strings
ERR_load_BUF_strings
ERR_load_COMP_strings
ERR_load_CONF_strings
ERR_load_CRYPTO_strings
ERR_load_DH_strings
ERR_load_DSA_strings
ERR_load_DSO_strings
ERR_load_ERR_strings
ERR_load_EVP_strings
ERR_load_OBJ_strings
ERR_load_PEM_strings
ERR_load_PKCS12_strings
ERR_load_PKCS7_strings
ERR_load_RAND_strings
ERR_load_RSA_strings
ERR_load_X509V3_strings
ERR_load_X509_strings
ERR_load_crypto_strings
ERR_load_strings
ERR_peek_error
ERR_peek_error_line
ERR_peek_error_line_data
ERR_print_errors

Sections

.text
Size: 547KB - Virtual size: 547KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
netmon
.sh linux
perl58.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

PL_AMG_names
PL_check
PL_fold
PL_fold_locale
PL_freq
PL_no_aelem
PL_no_dir_func
PL_no_func
PL_no_helem
PL_no_mem
PL_no_modify
PL_no_myglob
PL_no_security
PL_no_sock_func
PL_no_symref
PL_no_usym
PL_no_wrongref
PL_op_desc
PL_op_name
PL_opargs
PL_ppaddr
PL_regkind
PL_sig_name
PL_sig_num
PL_simple
PL_utf8skip
PL_uuemap
PL_varies
PL_vtbl_amagic
PL_vtbl_amagicelem
PL_vtbl_arylen
PL_vtbl_bm
PL_vtbl_collxfrm
PL_vtbl_dbline
PL_vtbl_defelem
PL_vtbl_env
PL_vtbl_envelem
PL_vtbl_fm
PL_vtbl_glob
PL_vtbl_isa
PL_vtbl_isaelem
PL_vtbl_mglob
PL_vtbl_nkeys
PL_vtbl_pack
PL_vtbl_packelem
PL_vtbl_pos
PL_vtbl_regdata
PL_vtbl_regdatum
PL_vtbl_regexp
PL_vtbl_sig
PL_vtbl_sigelem
PL_vtbl_substr
PL_vtbl_sv
PL_vtbl_taint
PL_vtbl_uvar
PL_vtbl_vec
PL_warn_nl
PL_warn_nosemi
PL_warn_reserved
PL_warn_uninit
PerlIOBase_binmode
PerlIOBase_clearerr
PerlIOBase_close
PerlIOBase_dup
PerlIOBase_eof
PerlIOBase_error
PerlIOBase_fileno
PerlIOBase_popped
PerlIOBase_pushed
PerlIOBase_read
PerlIOBase_setlinebuf
PerlIOBase_unread
PerlIOBuf_bufsiz
PerlIOBuf_fill
PerlIOBuf_flush
PerlIOBuf_get_base
PerlIOBuf_get_cnt
PerlIOBuf_get_ptr
PerlIOBuf_open
PerlIOBuf_popped
PerlIOBuf_pushed
PerlIOBuf_read
PerlIOBuf_seek
PerlIOBuf_set_ptrcnt
PerlIOBuf_tell
PerlIOBuf_unread
PerlIOBuf_write
PerlIO_allocate
PerlIO_apply_layera
PerlIO_apply_layers
PerlIO_arg_fetch
PerlIO_binmode
PerlIO_byte
PerlIO_canset_cnt
PerlIO_crlf
PerlIO_debug
PerlIO_define_layer
PerlIO_exportFILE
PerlIO_fast_gets
PerlIO_fdopen
PerlIO_findFILE
PerlIO_getc
PerlIO_getname
PerlIO_getpos
PerlIO_has_base
PerlIO_has_cntptr
PerlIO_importFILE
PerlIO_init
PerlIO_layer_fetch
PerlIO_list_free
PerlIO_modestr
PerlIO_open
PerlIO_parse_layers
PerlIO_pending
PerlIO_perlio
PerlIO_pop
PerlIO_printf
PerlIO_push
PerlIO_putc
PerlIO_puts
PerlIO_raw
PerlIO_releaseFILE
PerlIO_reopen
PerlIO_rewind
PerlIO_setpos
PerlIO_sprintf
PerlIO_stdio
PerlIO_stdoutf
PerlIO_sv_dup
PerlIO_tmpfile
PerlIO_ungetc
PerlIO_unix
PerlIO_utf8
PerlIO_vprintf
PerlIO_vsprintf
PerlIO_win32
Perl_GNo_ptr
Perl_GYes_ptr
Perl_Gcurinterp_ptr
Perl_Gdo_undump_ptr
Perl_Ghexdigit_ptr
Perl_Glockhook_ptr
Perl_Gop_mutex_ptr
Perl_Gpatleave_ptr
Perl_Grunops_dbg_ptr
Perl_Grunops_std_ptr
Perl_Gsharehook_ptr
Perl_Gthr_key_ptr
Perl_Gthreadhook_ptr
Perl_Gunlockhook_ptr
Perl_Gv_AMupdate
Perl_IArgv_ptr
Perl_ICmd_ptr
Perl_IDBgv_ptr
Perl_IDBline_ptr
Perl_IDBsignal_ptr
Perl_IDBsingle_ptr
Perl_IDBsub_ptr
Perl_IDBtrace_ptr
Perl_IDir_ptr
Perl_IEnv_ptr
Perl_ILIO_ptr
Perl_IMemParse_ptr
Perl_IMemShared_ptr
Perl_IMem_ptr
Perl_IOpPtr_ptr
Perl_IOpSlab_ptr
Perl_IOpSpace_ptr
Perl_IProc_ptr
Perl_ISock_ptr
Perl_IStdIO_ptr
Perl_Iamagic_generation_ptr
Perl_Ian_ptr
Perl_Iargvgv_ptr
Perl_Iargvout_stack_ptr
Perl_Iargvoutgv_ptr
Perl_Ibasetime_ptr
Perl_Ibeginav_ptr
Perl_Ibeginav_save_ptr
Perl_Ibitcount_ptr
Perl_Ibufend_ptr
Perl_Ibufptr_ptr
Perl_Icheckav_ptr
Perl_Icollation_ix_ptr
Perl_Icollation_name_ptr
Perl_Icollation_standard_ptr
Perl_Icollxfrm_base_ptr
Perl_Icollxfrm_mult_ptr
Perl_Icompcv_ptr
Perl_Icompiling_ptr
Perl_Icomppad_name_fill_ptr
Perl_Icomppad_name_floor_ptr
Perl_Icomppad_name_ptr
Perl_Icomppad_ptr
Perl_Icop_seqmax_ptr
Perl_Icopline_ptr
Perl_Icurcopdb_ptr
Perl_Icurstname_ptr
Perl_Icustom_op_descs_ptr
Perl_Icustom_op_names_ptr
Perl_Idbargs_ptr
Perl_Idebstash_ptr
Perl_Idebug_pad_ptr
Perl_Idebug_ptr
Perl_Idef_layerlist_ptr
Perl_Idefgv_ptr
Perl_Idiehook_ptr
Perl_Idoextract_ptr
Perl_Idoswitches_ptr
Perl_Idowarn_ptr
Perl_Ie_script_ptr
Perl_Iegid_ptr
Perl_Iencoding_ptr
Perl_Iendav_ptr
Perl_Ienvgv_ptr
Perl_Ierrgv_ptr
Perl_Ierror_count_ptr
Perl_Ieuid_ptr
Perl_Ieval_root_ptr
Perl_Ieval_start_ptr
Perl_Ievalseq_ptr
Perl_Iexit_flags_ptr
Perl_Iexitlist_ptr
Perl_Iexitlistlen_ptr
Perl_Iexpect_ptr
Perl_Ifdpid_ptr
Perl_Ifilemode_ptr
Perl_Iforkprocess_ptr
Perl_Iformfeed_ptr
Perl_Igensym_ptr
Perl_Igid_ptr
Perl_Iglob_index_ptr
Perl_Iglobalstash_ptr
Perl_Ihe_arenaroot_ptr
Perl_Ihe_root_ptr
Perl_Ihintgv_ptr
Perl_Ihints_ptr
Perl_Iin_clean_all_ptr
Perl_Iin_clean_objs_ptr
Perl_Iin_my_ptr
Perl_Iin_my_stash_ptr
Perl_Iincgv_ptr
Perl_Iinitav_ptr
Perl_Iinplace_ptr
Perl_Iknown_layers_ptr
Perl_Ilast_lop_op_ptr
Perl_Ilast_lop_ptr
Perl_Ilast_swash_hv_ptr
Perl_Ilast_swash_key_ptr
Perl_Ilast_swash_klen_ptr
Perl_Ilast_swash_slen_ptr
Perl_Ilast_swash_tmps_ptr
Perl_Ilast_uni_ptr
Perl_Ilastfd_ptr
Perl_Ilaststatval_ptr
Perl_Ilaststype_ptr
Perl_Ilex_brackets_ptr
Perl_Ilex_brackstack_ptr
Perl_Ilex_casemods_ptr
Perl_Ilex_casestack_ptr
Perl_Ilex_defer_ptr
Perl_Ilex_dojoin_ptr
Perl_Ilex_expect_ptr
Perl_Ilex_formbrack_ptr
Perl_Ilex_inpat_ptr
Perl_Ilex_inwhat_ptr
Perl_Ilex_op_ptr
Perl_Ilex_repl_ptr
Perl_Ilex_starts_ptr
Perl_Ilex_state_ptr
Perl_Ilex_stuff_ptr
Perl_Ilineary_ptr
Perl_Ilinestr_ptr
Perl_Ilocalpatches_ptr
Perl_Imain_cv_ptr
Perl_Imain_root_ptr
Perl_Imain_start_ptr
Perl_Imax_intro_pending_ptr
Perl_Imaxo_ptr
Perl_Imaxsysfd_ptr
Perl_Imess_sv_ptr
Perl_Imin_intro_pending_ptr
Perl_Iminus_F_ptr
Perl_Iminus_a_ptr
Perl_Iminus_c_ptr
Perl_Iminus_l_ptr
Perl_Iminus_n_ptr
Perl_Iminus_p_ptr
Perl_Imodglobal_ptr
Perl_Imulti_close_ptr
Perl_Imulti_end_ptr
Perl_Imulti_open_ptr
Perl_Imulti_start_ptr
Perl_Imultiline_ptr
Perl_Inexttoke_ptr
Perl_Inexttype_ptr
Perl_Inextval_ptr
Perl_Inice_chunk_ptr
Perl_Inice_chunk_size_ptr
Perl_Inomemok_ptr
Perl_Inullstash_ptr
Perl_Inumeric_compat1_ptr
Perl_Inumeric_local_ptr
Perl_Inumeric_name_ptr
Perl_Inumeric_radix_sv_ptr
Perl_Inumeric_standard_ptr
Perl_Iofmt_ptr
Perl_Ioldbufptr_ptr
Perl_Ioldname_ptr
Perl_Ioldoldbufptr_ptr
Perl_Iop_mask_ptr
Perl_Iop_seqmax_ptr
Perl_Iorigalen_ptr
Perl_Iorigargc_ptr
Perl_Iorigargv_ptr
Perl_Iorigenviron_ptr
Perl_Iorigfilename_ptr
Perl_Iors_sv_ptr
Perl_Iosname_ptr
Perl_Ipad_reset_pending_ptr
Perl_Ipadix_floor_ptr
Perl_Ipadix_ptr
Perl_Ipatchlevel_ptr
Perl_Iperl_destruct_level_ptr
Perl_Iperldb_ptr
Perl_Iperlio_ptr
Perl_Ipidstatus_ptr
Perl_Ipreambleav_ptr
Perl_Ipreambled_ptr
Perl_Ipreprocess_ptr
Perl_Iprofiledata_ptr
Perl_Ipsig_name_ptr
Perl_Ipsig_pend_ptr
Perl_Ipsig_ptr_ptr
Perl_Iptr_table_ptr
Perl_Iregex_pad_ptr
Perl_Iregex_padav_ptr
Perl_Ireplgv_ptr
Perl_Irsfp_filters_ptr
Perl_Irsfp_ptr
Perl_Irunops_ptr
Perl_Isavebegin_ptr
Perl_Isawampersand_ptr
Perl_Ish_path_ptr
Perl_Isig_pending_ptr
Perl_Isighandlerp_ptr
Perl_Isort_RealCmp_ptr
Perl_Isplitstr_ptr
Perl_Isrand_called_ptr
Perl_Istatusvalue_ptr
Perl_Istderrgv_ptr
Perl_Istdingv_ptr
Perl_Istrtab_ptr
Perl_Isub_generation_ptr
Perl_Isubline_ptr
Perl_Isubname_ptr
Perl_Isv_arenaroot_ptr
Perl_Isv_count_ptr
Perl_Isv_no_ptr
Perl_Isv_objcount_ptr
Perl_Isv_root_ptr
Perl_Isv_undef_ptr
Perl_Isv_yes_ptr
Perl_Isys_intern_ptr
Perl_Itaint_warn_ptr
Perl_Itainting_ptr
Perl_Itokenbuf_ptr
Perl_Iuid_ptr
Perl_Iunsafe_ptr
Perl_Iutf8_alnum_ptr
Perl_Iutf8_alnumc_ptr
Perl_Iutf8_alpha_ptr
Perl_Iutf8_ascii_ptr
Perl_Iutf8_cntrl_ptr
Perl_Iutf8_digit_ptr
Perl_Iutf8_graph_ptr
Perl_Iutf8_idcont_ptr
Perl_Iutf8_idstart_ptr
Perl_Iutf8_lower_ptr
Perl_Iutf8_mark_ptr
Perl_Iutf8_print_ptr
Perl_Iutf8_punct_ptr
Perl_Iutf8_space_ptr
Perl_Iutf8_tofold_ptr
Perl_Iutf8_tolower_ptr
Perl_Iutf8_totitle_ptr
Perl_Iutf8_toupper_ptr
Perl_Iutf8_upper_ptr
Perl_Iutf8_xdigit_ptr
Perl_Iuudmap_ptr
Perl_Iwantutf8_ptr
Perl_Iwarnhook_ptr
Perl_Iwidesyscalls_ptr
Perl_Ixiv_arenaroot_ptr
Perl_Ixiv_root_ptr
Perl_Ixnv_arenaroot_ptr
Perl_Ixnv_root_ptr
Perl_Ixpv_arenaroot_ptr
Perl_Ixpv_root_ptr
Perl_Ixpvav_arenaroot_ptr
Perl_Ixpvav_root_ptr
Perl_Ixpvbm_arenaroot_ptr
Perl_Ixpvbm_root_ptr
Perl_Ixpvcv_arenaroot_ptr
Perl_Ixpvcv_root_ptr
Perl_Ixpvhv_arenaroot_ptr
Perl_Ixpvhv_root_ptr
Perl_Ixpviv_arenaroot_ptr
Perl_Ixpviv_root_ptr
Perl_Ixpvlv_arenaroot_ptr
Perl_Ixpvlv_root_ptr
Perl_Ixpvmg_arenaroot_ptr
Perl_Ixpvmg_root_ptr
Perl_Ixpvnv_arenaroot_ptr
Perl_Ixpvnv_root_ptr
Perl_Ixrv_arenaroot_ptr
Perl_Ixrv_root_ptr
Perl_Iyychar_ptr
Perl_Iyydebug_ptr
Perl_Iyyerrflag_ptr
Perl_Iyylval_ptr
Perl_Iyynerrs_ptr
Perl_Iyyval_ptr
Perl_PerlIO_clearerr
Perl_PerlIO_close
Perl_PerlIO_eof
Perl_PerlIO_error
Perl_PerlIO_fileno
Perl_PerlIO_fill
Perl_PerlIO_flush
Perl_PerlIO_get_base
Perl_PerlIO_get_bufsiz
Perl_PerlIO_get_cnt
Perl_PerlIO_get_ptr
Perl_PerlIO_read
Perl_PerlIO_seek
Perl_PerlIO_set_cnt
Perl_PerlIO_set_ptrcnt
Perl_PerlIO_setlinebuf
Perl_PerlIO_stderr
Perl_PerlIO_stdin
Perl_PerlIO_stdout
Perl_PerlIO_tell
Perl_PerlIO_unread
Perl_PerlIO_write
Perl_TSv_ptr
Perl_TXpv_ptr
Perl_Tav_fetch_sv_ptr
Perl_Tbodytarget_ptr
Perl_Tbostr_ptr
Perl_Tchopset_ptr
Perl_Tcolors_ptr
Perl_Tcolorset_ptr
Perl_Tcurcop_ptr
Perl_Tcurpad_ptr
Perl_Tcurpm_ptr
Perl_Tcurstack_ptr
Perl_Tcurstackinfo_ptr
Perl_Tcurstash_ptr
Perl_Tdefoutgv_ptr
Perl_Tdefstash_ptr
Perl_Tdelaymagic_ptr
Perl_Tdirty_ptr
Perl_Tdumpindent_ptr
Perl_Tefloatbuf_ptr
Perl_Tefloatsize_ptr
Perl_Terrors_ptr
Perl_Textralen_ptr
Perl_Tfirstgv_ptr
Perl_Tformtarget_ptr
Perl_Thv_fetch_ent_mh_ptr
Perl_Thv_fetch_sv_ptr
Perl_Tin_eval_ptr
Perl_Tlast_in_gv_ptr
Perl_Tlastscream_ptr
Perl_Tlocalizing_ptr
Perl_Tmainstack_ptr
Perl_Tmarkstack_max_ptr
Perl_Tmarkstack_ptr
Perl_Tmarkstack_ptr_ptr
Perl_Tmaxscream_ptr
Perl_Tna_ptr
Perl_Tnrs_ptr
Perl_Tofs_sv_ptr
Perl_Top_ptr
Perl_Tpeepp_ptr
Perl_Treg_call_cc_ptr
Perl_Treg_curpm_ptr
Perl_Treg_eval_set_ptr
Perl_Treg_flags_ptr
Perl_Treg_ganch_ptr
Perl_Treg_leftiter_ptr
Perl_Treg_magic_ptr
Perl_Treg_match_utf8_ptr
Perl_Treg_maxiter_ptr
Perl_Treg_oldcurpm_ptr
Perl_Treg_oldpos_ptr
Perl_Treg_oldsaved_ptr
Perl_Treg_oldsavedlen_ptr
Perl_Treg_poscache_ptr

Sections

UPX0
Size: - Virtual size: 504KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 317KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ssleay32.dll
.dll windows:4 windows x86 arch:x86

e7ee93661ad1f52dc2b0f299d89f644f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetLastError

msvcrt

memcpy
memmove
memset
qsort
strncmp
time

libeay32

ASN1_dup
SHA1_Init
SHA1_Update
ASN1_get_object
ASN1_object_size
ASN1_put_object
X509_NAME_cmp
X509_NAME_dup
X509_NAME_free
X509_PURPOSE_get_by_id
X509_STORE_CTX_cleanup
X509_STORE_CTX_get_ex_data
X509_STORE_CTX_get_ex_new_index
X509_STORE_CTX_init
X509_STORE_CTX_purpose_inherit
X509_STORE_CTX_set_ex_data
X509_STORE_CTX_set_verify_cb
X509_STORE_free
X509_STORE_get_by_subject
X509_STORE_load_locations
X509_STORE_new
X509_STORE_set_default_paths
X509_TRUST_get_by_id
X509_certificate_type
X509_check_private_key
X509_free
X509_get_ext_count
X509_get_issuer_name
X509_get_pubkey
X509_get_subject_name
BIO_callback_ctrl
BIO_copy_next_retry
X509_verify_cert
X509_verify_cert_error_string
BIO_ctrl
asn1_Finish
asn1_GetSequence
asn1_add_error
d2i_ASN1_INTEGER
d2i_ASN1_OCTET_STRING
d2i_DHparams
BIO_f_buffer
d2i_PrivateKey
d2i_RSAPrivateKey
d2i_RSAPrivateKey_bio
d2i_X509
d2i_X509_NAME
d2i_X509_bio
BIO_find_type
BIO_free
BIO_free_all
i2d_ASN1_INTEGER
i2d_ASN1_OCTET_STRING
i2d_DHparams
BIO_get_retry_reason
i2d_X509
BIO_int_ctrl
i2d_X509_NAME
BIO_new
lh_delete
lh_doall_arg
lh_free
lh_insert
lh_new
lh_retrieve
sk_delete
sk_dup
sk_find
sk_free
sk_new
sk_new_null
sk_num
sk_pop_free
sk_push
sk_set
sk_set_cmp_func
sk_shift
sk_value
sk_zero
BIO_pop
BIO_printf
BIO_push
BIO_puts
BIO_read
BIO_s_connect
BIO_s_file
BIO_s_socket
BIO_snprintf
BIO_write
BN_bin2bn
BN_bn2bin
BN_clear_free
BN_dup
BN_num_bits
BUF_MEM_free
BUF_MEM_grow
BUF_MEM_new
COMP_CTX_free
ASN1_INTEGER_get
COMP_CTX_new
COMP_compress_block
COMP_expand_block
CRYPTO_add_lock
ASN1_INTEGER_set
CRYPTO_dup_ex_data
CRYPTO_free
CRYPTO_free_ex_data
CRYPTO_get_ex_data
CRYPTO_get_ex_new_index
CRYPTO_lock
CRYPTO_malloc
CRYPTO_new_ex_data
CRYPTO_set_ex_data
DH_compute_key
DH_free
DH_generate_key
DH_new
DH_size
DSA_sign
DSA_verify
ERR_add_error_data
ERR_clear_error
ERR_get_error
ERR_load_crypto_strings
ERR_load_strings
ERR_peek_error
ERR_put_error
EVP_CIPHER_CTX_cleanup
EVP_CIPHER_CTX_init
EVP_CipherInit
EVP_DecryptInit
EVP_DigestFinal
EVP_DigestInit
EVP_DigestUpdate
EVP_EncryptInit
EVP_MD_CTX_copy
EVP_PKEY_assign
EVP_PKEY_copy_parameters
EVP_PKEY_free
EVP_PKEY_missing_parameters
EVP_PKEY_new
EVP_PKEY_size
EVP_PKEY_type
EVP_SignFinal
EVP_VerifyFinal
EVP_add_cipher
EVP_add_digest
EVP_des_cbc
EVP_des_ede3_cbc
EVP_dss1
EVP_enc_null
EVP_get_cipherbyname
EVP_get_digestbyname
EVP_idea_cbc
EVP_md2
EVP_md5
EVP_rc2_cbc
EVP_rc4
EVP_sha1
HMAC_Final
HMAC_Init
HMAC_Update
HMAC_cleanup
MD5_Final
MD5_Init
MD5_Update
OBJ_NAME_add
OBJ_bsearch
OBJ_obj2nid
OPENSSL_cleanse
PEM_read_bio_PrivateKey
PEM_read_bio_RSAPrivateKey
PEM_read_bio_X509
RAND_add
RAND_bytes
RAND_pseudo_bytes
RSAPrivateKey_dup
ASN1_check_infinite_end
RSA_flags
RSA_free
RSA_new
RSA_private_decrypt
RSA_public_encrypt
RSA_sign
RSA_size
RSA_verify
SHA1_Final

Exports

Exports

BIO_f_ssl
BIO_new_buffer_ssl_connect
BIO_new_ssl
BIO_new_ssl_connect
BIO_ssl_copy_session_id
BIO_ssl_shutdown
ERR_load_SSL_strings
SSL_CIPHER_description
SSL_CIPHER_get_bits
SSL_CIPHER_get_name
SSL_CIPHER_get_version
SSL_COMP_add_compression_method
SSL_CTX_add_client_CA
SSL_CTX_add_session
SSL_CTX_callback_ctrl
SSL_CTX_check_private_key
SSL_CTX_ctrl
SSL_CTX_flush_sessions
SSL_CTX_free
SSL_CTX_get_cert_store
SSL_CTX_get_client_CA_list
SSL_CTX_get_ex_data
SSL_CTX_get_ex_new_index
SSL_CTX_get_quiet_shutdown
SSL_CTX_get_timeout
SSL_CTX_get_verify_callback
SSL_CTX_get_verify_depth
SSL_CTX_get_verify_mode
SSL_CTX_get_version_indy
SSL_CTX_load_verify_locations
SSL_CTX_new
SSL_CTX_remove_session
SSL_CTX_sessions
SSL_CTX_set_cert_store
SSL_CTX_set_cert_verify_callback
SSL_CTX_set_cipher_list
SSL_CTX_set_client_CA_list
SSL_CTX_set_default_passwd_cb
SSL_CTX_set_default_passwd_cb_userdata
SSL_CTX_set_default_verify_paths
SSL_CTX_set_ex_data
SSL_CTX_set_info_callback_indy
SSL_CTX_set_options_indy
SSL_CTX_set_purpose
SSL_CTX_set_quiet_shutdown
SSL_CTX_set_session_id_context
SSL_CTX_set_ssl_version
SSL_CTX_set_timeout
SSL_CTX_set_tmp_dh_callback
SSL_CTX_set_tmp_rsa_callback
SSL_CTX_set_trust
SSL_CTX_set_verify
SSL_CTX_set_verify_depth
SSL_CTX_use_PrivateKey
SSL_CTX_use_PrivateKey_ASN1
SSL_CTX_use_PrivateKey_file
SSL_CTX_use_RSAPrivateKey
SSL_CTX_use_RSAPrivateKey_ASN1
SSL_CTX_use_RSAPrivateKey_file
SSL_CTX_use_certificate
SSL_CTX_use_certificate_ASN1
SSL_CTX_use_certificate_chain_file
SSL_CTX_use_certificate_file
SSL_SESSION_cmp
SSL_SESSION_free
SSL_SESSION_get_ex_data
SSL_SESSION_get_ex_new_index
SSL_SESSION_get_id_ctx_indy
SSL_SESSION_get_id_indy
SSL_SESSION_get_time
SSL_SESSION_get_timeout
SSL_SESSION_hash
SSL_SESSION_new
SSL_SESSION_print
SSL_SESSION_print_fp
SSL_SESSION_set_ex_data
SSL_SESSION_set_time
SSL_SESSION_set_timeout
SSL_accept
SSL_add_client_CA
SSL_add_file_cert_subjects_to_stack
SSL_alert_desc_string
SSL_alert_desc_string_long
SSL_alert_type_string
SSL_alert_type_string_long
SSL_callback_ctrl
SSL_check_private_key
SSL_clear
SSL_connect
SSL_copy_session_id
SSL_ctrl
SSL_do_handshake
SSL_dup
SSL_dup_CA_list
SSL_free
SSL_get1_session
SSL_get_SSL_CTX
SSL_get_app_data_indy
SSL_get_certificate
SSL_get_cipher_list
SSL_get_ciphers
SSL_get_client_CA_list
SSL_get_current_cipher
SSL_get_default_timeout
SSL_get_error
SSL_get_ex_data
SSL_get_ex_data_X509_STORE_CTX_idx
SSL_get_ex_new_index
SSL_get_fd
SSL_get_finished
SSL_get_info_callback
SSL_get_peer_cert_chain
SSL_get_peer_certificate
SSL_get_peer_finished
SSL_get_privatekey
SSL_get_quiet_shutdown
SSL_get_rbio
SSL_get_read_ahead
SSL_get_rfd
SSL_get_session
SSL_get_shared_ciphers
SSL_get_shutdown
SSL_get_ssl_method
SSL_get_verify_callback
SSL_get_verify_depth
SSL_get_verify_mode
SSL_get_verify_result
SSL_get_version
SSL_get_wbio
SSL_get_wfd
SSL_library_init
SSL_load_client_CA_file
SSL_load_error_strings
SSL_new
SSL_peek
SSL_pending
SSL_read
SSL_renegotiate
SSL_rstate_string
SSL_rstate_string_long
SSL_set_accept_state
SSL_set_app_data_indy
SSL_set_bio
SSL_set_cipher_list
SSL_set_client_CA_list
SSL_set_connect_state
SSL_set_ex_data
SSL_set_fd
SSL_set_info_callback
SSL_set_purpose
SSL_set_quiet_shutdown
SSL_set_read_ahead
SSL_set_rfd
SSL_set_session
SSL_set_session_id_context
SSL_set_shutdown
SSL_set_ssl_method
SSL_set_tmp_dh_callback
SSL_set_tmp_rsa_callback
SSL_set_trust
SSL_set_verify
SSL_set_verify_depth
SSL_set_verify_result
SSL_set_wfd
SSL_shutdown
SSL_state
SSL_state_string
SSL_state_string_long
SSL_use_PrivateKey
SSL_use_PrivateKey_ASN1
SSL_use_PrivateKey_file
SSL_use_RSAPrivateKey
SSL_use_RSAPrivateKey_ASN1
SSL_use_RSAPrivateKey_file
SSL_use_certificate
SSL_use_certificate_ASN1
SSL_use_certificate_file
SSL_version
SSL_want
SSL_write
SSLv23_client_method
SSLv23_method
SSLv23_server_method
SSLv2_client_method
SSLv2_method
SSLv2_server_method
SSLv3_client_method
SSLv3_method
SSLv3_server_method
TLSv1_client_method
TLSv1_method
TLSv1_server_method
UCTTimeDecode_indy
X509_STORE_CTX_get_app_data_indy
X509_get_notAfter_indy
X509_get_notBefore_indy
d2i_SSL_SESSION
i2d_SSL_SESSION

Sections

.text
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

efcb43a6574fd48d389eb490e5ba28ce

Headers

File Characteristics

Imports

msvcrt

perl58

Sections

.text Size: 4KB - Virtual size: 796B

.rdata Size: 4KB - Virtual size: 534B

.data Size: 4KB - Virtual size: 380B

.rsrc Size: 4KB - Virtual size: 956B

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 20KB

UPX1 Size: 2KB - Virtual size: 4KB

UPX2 Size: 512B - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 4KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 264B

.reloc Size: 4KB - Virtual size: 210B

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 24KB

UPX1 Size: 4KB - Virtual size: 4KB

UPX2 Size: 512B - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 909B

.data Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 426B

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 20KB

UPX1 Size: 5KB - Virtual size: 8KB

UPX2 Size: 512B - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 8KB - Virtual size: 6KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 680B

.reloc Size: 4KB - Virtual size: 296B

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 20KB

UPX1 Size: 4KB - Virtual size: 8KB

UPX2 Size: 512B - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 370B

Headers

File Characteristics

Exports

Exports

.text
Size: 4KB - Virtual size: 796B

.rdata
Size: 4KB - Virtual size: 534B

.data
Size: 4KB - Virtual size: 380B

.rsrc
Size: 4KB - Virtual size: 956B

UPX0
Size: - Virtual size: 20KB

UPX1
Size: 2KB - Virtual size: 4KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 264B

.reloc
Size: 4KB - Virtual size: 210B

UPX0
Size: - Virtual size: 24KB

UPX1
Size: 4KB - Virtual size: 4KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 909B

.data
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 426B

UPX0
Size: - Virtual size: 20KB

UPX1
Size: 5KB - Virtual size: 8KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 6KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 680B

.reloc
Size: 4KB - Virtual size: 296B

UPX0
Size: - Virtual size: 20KB

UPX1
Size: 4KB - Virtual size: 8KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 370B

UPX0
Size: - Virtual size: 28KB

UPX1
Size: 4KB - Virtual size: 8KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 8KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 824B

.reloc
Size: 4KB - Virtual size: 348B

UPX0
Size: - Virtual size: 20KB

UPX1
Size: 2KB - Virtual size: 4KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 1KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 252B

.reloc
Size: 4KB - Virtual size: 174B

UPX0
Size: - Virtual size: 20KB

UPX1
Size: 1KB - Virtual size: 4KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 930B

.rdata
Size: 4KB - Virtual size: 608B

.data
Size: 4KB - Virtual size: 152B

.reloc
Size: 4KB - Virtual size: 128B

UPX0
Size: - Virtual size: 20KB

UPX1
Size: 1KB - Virtual size: 4KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 930B

.rdata
Size: 4KB - Virtual size: 599B