SAOImageDS9 8[.]3 Install[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

SAOImageDS9 8.3 Install.exe
Size

18.7MB
MD5

5344d09f39772f0ad377e851592ebb15
SHA1

dec97a1b5ce8bcbe2273301387ea4a8b566fb02f
SHA256

1e5c682d62b236e2740597f4668da0a053e8dcb141264bb6b217138882839813
SHA512

f835d74432bc79f63277f4c18d643d8d455e6c0db192eb8d828c03660ae1c2aa0aee5beb04e3862405307db98d6113250cd546e25d33bba33c1c1cd025dd32aa
SSDEEP

393216:dgY2i6u4PtCrlRLfTiwio8W/N0Fvgt84q79EDZHNhSmXJYOqbgZuuWmR0d:dg5iuQrXHmo8W/GFvvC9jZdqLmR0d

Score

N/A

Malware Config

Signatures

Files

SAOImageDS9 8.3 Install.exe
.exe windows x86

23c22ba8cc2a21a5dc13e55d6ed68008

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetWindowsDirectoryA
GlobalFree
GlobalUnlock
GlobalHandle
_lclose
_llseek
_lread
_lopen
GlobalLock
GlobalAlloc
GlobalMemoryStatus
GetVersion
GetModuleFileNameA
WriteFile
GetSystemTime
LocalFree
ExitProcess
FormatMessageA
GetLastError
GetModuleHandleA
GetVolumeInformationA
WideCharToMultiByte
CreateProcessA
CloseHandle
FindNextFileA
DeleteFileA
GetTickCount
GetLongPathNameA
GetTempPathA
GetCommandLineA
lstrcmpiA
WaitForSingleObject
CopyFileA
GetFileAttributesA
LoadLibraryExA
GetSystemDirectoryA
SetErrorMode
MultiByteToWideChar
GetLocalTime
lstrlenA
CreateFileW
ReadFile
SetFilePointer
GetEnvironmentVariableA
GetDriveTypeA
LocalAlloc
DosDateTimeToFileTime
GetVersionExA
LocalFileTimeToFileTime
SetFileTime
CreateDirectoryA
SetCurrentDirectoryA
GetCurrentDirectoryA
FindFirstFileA
FindClose
RemoveDirectoryA
GetProcAddress
FreeLibrary
InterlockedExchange
LoadLibraryA
RaiseException
RtlUnwind
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
HeapFree
HeapReAlloc
GetProcessHeap
GetStartupInfoA
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
Sleep
HeapSize
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapDestroy
HeapCreate
GetStdHandle
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetConsoleCP
GetConsoleMode
InitializeCriticalSection
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers

gdi32

SetBkColor
SetTextColor
SetTextAlign
GetBkColor
GetTextExtentPoint32A
CreateDCA
GetDeviceCaps
CreateFontIndirectA
DeleteDC
SelectObject
DeleteObject
ExtTextOutA

advapi32

RegQueryValueA

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_winzip_
Size: 18.5MB - Virtual size: 18.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23c22ba8cc2a21a5dc13e55d6ed68008

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

Sections

.text Size: 84KB - Virtual size: 80KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 8KB - Virtual size: 58KB

.rsrc Size: 204KB - Virtual size: 200KB

_winzip_ Size: 18.5MB - Virtual size: 18.5MB

.text
Size: 84KB - Virtual size: 80KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 8KB - Virtual size: 58KB

.rsrc
Size: 204KB - Virtual size: 200KB

_winzip_
Size: 18.5MB - Virtual size: 18.5MB