15d7273fa61645d19ffc0f78c6c231c80882e4b2d8f104f770a7aa08b6388bab

Sharing

Copy URL Twitter E-mail

General

Target

15d7273fa61645d19ffc0f78c6c231c80882e4b2d8f104f770a7aa08b6388bab
Size

216KB
MD5

3cdb029b134a7a64a1e3ee302a6f55c6
SHA1

cfa0b79c3b911fe1a6c2eb644ca56c785d72cd75
SHA256

15d7273fa61645d19ffc0f78c6c231c80882e4b2d8f104f770a7aa08b6388bab
SHA512

9664d0ecba4116128c1c06d7599acbe48d06389f27f35f652e67f3735894fe43743a6b3db1a61ce582f612d8a8ff03862a6b3e80cf20cdd62c09170318c1ae16
SSDEEP

3072:rpM8iWrKcwzo7TU9ho26pMS1VXgsRP4PeF14:ra89XwzaTUotfRCeF14

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15d7273fa61645d19ffc0f78c6c231c80882e4b2d8f104f770a7aa08b6388bab

Files

15d7273fa61645d19ffc0f78c6c231c80882e4b2d8f104f770a7aa08b6388bab
.exe windows:4 windows x86 arch:x86

e580c4e9fed7c6f3d527e8520073783c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

libgimpthumb-2.0-0

gimp_thumb_init
gimp_thumbnail_peek_image
gimp_thumbnail_save_thumb
gimp_thumb_size_get_type
gimp_thumb_name_from_uri
gimp_thumbnail_new
gimp_thumbnail_set_filename
gimp_thumbnail_load_thumb

libgdk-win32-2.0-0

gdk_flush

libgdk_pixbuf-2.0-0

gdk_pixbuf_get_has_alpha
gdk_pixbuf_get_height
gdk_pixbuf_get_n_channels
gdk_pixbuf_get_pixels
gdk_pixbuf_get_rowstride
gdk_pixbuf_get_width
gdk_pixbuf_new_from_inline

libgimp-2.0-0

gimp_context_get_background
gimp_context_set_background
gimp_destroy_params
gimp_display_new
gimp_displays_flush
gimp_drawable_detach
gimp_drawable_fill
gimp_drawable_flush
gimp_drawable_get
gimp_drawable_get_image
gimp_drawable_get_name
gimp_drawable_get_tattoo
gimp_drawable_get_visible
gimp_drawable_has_alpha
gimp_drawable_height
gimp_drawable_mask_bounds
gimp_drawable_merge_shadow
gimp_drawable_offsets
gimp_drawable_parasite_attach
gimp_drawable_parasite_find
gimp_drawable_set_name
gimp_drawable_set_visible
gimp_drawable_transform_flip_simple
gimp_drawable_transform_rotate_default
gimp_drawable_transform_rotate_simple
gimp_drawable_type
gimp_drawable_update
gimp_drawable_width
gimp_edit_clear
gimp_edit_copy
gimp_edit_paste
gimp_file_load
gimp_file_save
gimp_floating_sel_anchor
gimp_font_select_new
gimp_gimprc_query
gimp_image_add_layer
gimp_image_base_type
gimp_image_clean_all
gimp_image_convert_grayscale
gimp_image_convert_indexed
gimp_image_convert_rgb
gimp_image_delete
gimp_image_duplicate
gimp_image_flatten
gimp_image_get_active_layer
gimp_image_get_colormap
gimp_image_get_filename
gimp_image_get_layers
gimp_image_get_resolution
gimp_image_get_selection
gimp_image_get_unit
gimp_image_height
gimp_image_is_dirty
gimp_image_list
gimp_image_merge_visible_layers
gimp_image_new
gimp_image_parasite_find
gimp_image_remove_channel
gimp_image_remove_layer
gimp_image_scale
gimp_image_set_active_layer
gimp_image_set_filename
gimp_image_set_resolution
gimp_image_set_unit
gimp_image_undo_disable
gimp_image_undo_enable
gimp_image_undo_is_enabled
gimp_image_width
gimp_install_procedure
gimp_layer_add_alpha
gimp_layer_add_mask
gimp_layer_copy
gimp_layer_create_mask
gimp_layer_get_mask
gimp_layer_get_mode
gimp_layer_get_opacity
gimp_layer_new
gimp_layer_remove_mask
gimp_layer_resize_to_image_size
gimp_layer_set_mode
gimp_layer_set_offsets
gimp_layer_set_opacity
gimp_main
gimp_palettes_refresh
gimp_pixel_rgn_init
gimp_pixel_rgn_set_rect
gimp_pixel_rgns_process
gimp_pixel_rgns_register
gimp_plugin_domain_register
gimp_plugin_menu_register
gimp_procedural_db_get_data
gimp_procedural_db_get_data_size
gimp_procedural_db_proc_info
gimp_procedural_db_query
gimp_procedural_db_set_data
gimp_progress_init
gimp_progress_update
gimp_run_procedure
gimp_selection_all
gimp_selection_bounds
gimp_selection_load
gimp_selection_none
gimp_selection_save
gimp_show_help_button
gimp_temp_name

libgimpbase-2.0-0

gimp_directory
gimp_parasite_data
gimp_parasite_free
gimp_parasite_new

libgimpui-2.0-0

gimp_ui_init

libgimpwidgets-2.0-0

gimp_double_adjustment_update
gimp_frame_new
gimp_help_disable_tooltips
gimp_help_enable_tooltips
gimp_help_set_help_data
gimp_int_adjustment_update
gimp_int_combo_box_append
gimp_int_combo_box_get_active
gimp_int_combo_box_get_type
gimp_int_combo_box_set_active
gimp_scale_entry_new
gimp_spin_button_new
gimp_standard_help_func

libglib-2.0-0

g_ascii_dtostr
g_ascii_formatd
g_ascii_strtod
g_ascii_table
g_ascii_toupper
g_build_filename
g_chmod
g_dir_close
g_dir_open_utf8
g_dir_read_name_utf8
g_file_test_utf8
g_filename_to_uri_utf8
g_fopen
g_free
g_get_current_dir_utf8
g_get_home_dir_utf8
g_getenv_utf8
g_log
g_malloc
g_malloc0
g_mkdir
g_path_is_absolute
g_remove
g_rename
g_snprintf
g_stat
g_strdup
g_strdup_printf
g_strerror
g_unichar_isspace
g_unichar_toupper
g_utf8_find_next_char
g_utf8_get_char
g_utf8_strlen
g_utf8_strup
g_utf8_validate

libgobject-2.0-0

g_object_get
g_object_get_data
g_object_new
g_object_set
g_object_set_data
g_object_unref
g_signal_connect_data
g_type_check_instance_cast
g_type_class_ref

libgtk-win32-2.0-0

gtk_adjustment_get_type
gtk_adjustment_set_value
gtk_box_get_type
gtk_box_pack_end
gtk_box_pack_start
gtk_box_set_homogeneous
gtk_button_box_get_type
gtk_button_box_set_child_secondary
gtk_button_new_from_stock
gtk_button_new_with_label
gtk_check_button_new_with_label
gtk_container_add
gtk_container_get_type
gtk_container_set_border_width
gtk_dialog_get_type
gtk_dialog_new
gtk_entry_get_text
gtk_entry_get_type
gtk_entry_new
gtk_entry_set_text
gtk_file_selection_get_filename_utf8
gtk_file_selection_get_type
gtk_file_selection_new
gtk_file_selection_set_filename_utf8
gtk_frame_get_type
gtk_frame_set_shadow_type
gtk_hbox_new
gtk_icon_factory_add
gtk_icon_factory_add_default
gtk_icon_factory_new
gtk_icon_set_add_source
gtk_icon_set_new
gtk_icon_set_unref
gtk_icon_source_free
gtk_icon_source_new
gtk_icon_source_set_pixbuf
gtk_icon_source_set_size
gtk_icon_source_set_size_wildcarded
gtk_label_new
gtk_main
gtk_main_quit
gtk_misc_get_type
gtk_misc_set_alignment
gtk_object_get_type
gtk_radio_button_get_group
gtk_radio_button_get_type
gtk_radio_button_new_with_label
gtk_stock_add_static
gtk_table_attach
gtk_table_get_type
gtk_table_new
gtk_table_set_col_spacings
gtk_table_set_row_spacings
gtk_toggle_button_get_type
gtk_toggle_button_set_active
gtk_widget_destroy
gtk_widget_get_type
gtk_widget_grab_default
gtk_widget_set_sensitive
gtk_widget_set_size_request
gtk_widget_show
gtk_window_get_type
gtk_window_present
gtk_window_set_position
gtk_window_set_title

intl

bind_textdomain_codeset
bindtextdomain
gettext
textdomain

kernel32

ExitProcess
GetModuleHandleA
GetProcAddress
SetUnhandledExceptionFilter
Sleep

msvcrt

_getpid
__getmainargs
__p___argc
__p___argv
__p__environ
__p__fmode
__set_app_type
_atoi64
_cexit
_errno
_iob
_onexit
_setmode
atexit
atol
fclose
fgets
fprintf
fputc
fputs
fread
fscanf
fseek
fwrite
memcpy
printf
putchar
puts
signal
strcat
strcmp
strcpy
strlen
strncmp
strncpy
system
time

Sections

.text
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e580c4e9fed7c6f3d527e8520073783c

Headers

File Characteristics

Imports

libgimpthumb-2.0-0

libgdk-win32-2.0-0

libgdk_pixbuf-2.0-0

libgimp-2.0-0

libgimpbase-2.0-0

libgimpui-2.0-0

libgimpwidgets-2.0-0

libglib-2.0-0

libgobject-2.0-0

libgtk-win32-2.0-0

intl

kernel32

msvcrt

Sections

.text Size: 66KB - Virtual size: 65KB

.data Size: 1024B - Virtual size: 624B

.rdata Size: 65KB - Virtual size: 64KB

.bss Size: - Virtual size: 7KB

.idata Size: 11KB - Virtual size: 10KB

.text
Size: 66KB - Virtual size: 65KB

.data
Size: 1024B - Virtual size: 624B

.rdata
Size: 65KB - Virtual size: 64KB

.bss
Size: - Virtual size: 7KB

.idata
Size: 11KB - Virtual size: 10KB