Setup[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Setup.exe
Size

6.5MB
MD5

25e3f3485ba8e9d285202e8d4bf370f2
SHA1

f7a08b7eb1b24150798489a8327fdf1e65e47626
SHA256

d4bc4ad10e83b893230ba27a268d76e5f912723da4867bcd68d64e947cf1b3d8
SHA512

9fdfea79ceae95bfad4909fbac5aba9ea19270a31f67233fc86d12a6886f46a3a165db8788d035739a7a6abbd4ad9a81d02e06b7493056a23a535ae4f12e9877
SSDEEP

196608:/XvIj73SogpcS9/L3/9QcKLrEJR+ozZuHU/oLc://e7USSNjacoro+oqsoL

Score

N/A

Malware Config

Signatures

Files

Setup.exe
.exe windows x86

dbfedc155114e93b03253d2457becdac

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
VirtualQuery
LocalAlloc
LocalFree
GetModuleFileNameW
GetProcessAffinityMask
SetProcessAffinityMask
SetThreadAffinityMask
Sleep
ExitProcess
FreeLibrary
LoadLibraryA
GetModuleHandleA
GetProcAddress

wtsapi32

WTSSendMessageW

user32

GetProcessWindowStation
GetProcessWindowStation
GetUserObjectInformationW

Sections

.text
Size: - Virtual size: 989B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 678B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

らら��
Size: - Virtual size: 549KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

らら��
Size: - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

らら��
Size: 6.5MB - Virtual size: 6.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dbfedc155114e93b03253d2457becdac

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

wtsapi32

user32

Sections

.text Size: - Virtual size: 989B

.rdata Size: - Virtual size: 678B

.data Size: - Virtual size: 168KB

らら�� Size: - Virtual size: 549KB

らら�� Size: - Virtual size: 4.0MB

らら�� Size: 6.5MB - Virtual size: 6.5MB

.reloc Size: 1KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: - Virtual size: 989B

.rdata
Size: - Virtual size: 678B

.data
Size: - Virtual size: 168KB

らら��
Size: - Virtual size: 549KB

らら��
Size: - Virtual size: 4.0MB

らら��
Size: 6.5MB - Virtual size: 6.5MB

.reloc
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB