ZN-N智能物业管理系统V2[.]8[.]2(兼容晨辉山虎老表网络版）20170509安装包[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

ZN-N智能物业管理系统V2.8.2(兼容晨辉山虎老表网络版）20170509安装包.exe
Size

79.6MB
MD5

5aae607954ef71df0982a59a4025a909
SHA1

5644901125d4758450e853bd11ee752d61a601b4
SHA256

8358b2c3a1d6fe7b17d0f5afd37c960179097196f4099d58368886ecb90dba99
SHA512

e63c5dc683348bfe9a45454bb32aef285b03e946321e058082b8d5daa46a3421039ace42695c7622fbe7f4746c1e2c606a51eb6ace550a41617b0d79c1683969
SSDEEP

1572864:LctRn+n2YFOk7V6pGf0yxvfmlv0vc6JRGtSTOauKrYW/bilgf:LctJ+2SP0qPTRGtwOirYEb/f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ZN-N智能物业管理系统V2.8.2(兼容晨辉山虎老表网络版）20170509安装包.exe

Files

ZN-N智能物业管理系统V2.8.2(兼容晨辉山虎老表网络版）20170509安装包.exe
.exe windows x86

e2c26bd4011581083f5d4c005563fb8e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

comctl32

ord17

kernel32

IsValidLocale
GetLocaleInfoW
ExitThread
lstrcpyA
GetCommandLineW
GetExitCodeProcess
GetSystemDefaultLangID
GetUserDefaultLangID
lstrcmpW
lstrcmpiW
VerLanguageNameW
FindClose
FindNextFileW
CompareFileTime
FindFirstFileW
MoveFileW
GetPrivateProfileStringW
CreateDirectoryW
SetFileAttributesW
GetSystemTimeAsFileTime
LocalFree
FormatMessageW
GetSystemInfo
MulDiv
RaiseException
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
LoadLibraryExW
GetModuleHandleW
GetVersion
GetLocalTime
GetFileAttributesW
FileTimeToLocalFileTime
GetFileTime
GetCurrentDirectoryW
VirtualQuery
IsBadReadPtr
FlushFileBuffers
SetEndOfFile
GetDriveTypeW
GetCurrentThread
GetProcAddress
LocalAlloc
InterlockedExchange
LoadLibraryA
FreeLibrary
LoadLibraryW
GetTempFileNameW
lstrcatW
QueryPerformanceFrequency
InterlockedDecrement
CreateEventW
CompareStringW
CompareStringA
GetVersionExW
InterlockedIncrement
CopyFileW
CreateThread
GetExitCodeThread
GetTickCount
GlobalFree
GlobalLock
GlobalUnlock
FindResourceW
LoadResource
SizeofResource
GlobalAlloc
LockResource
ExpandEnvironmentStringsW
GetTempPathW
SetErrorMode
SetEnvironmentVariableA
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
LCMapStringA
InitializeCriticalSectionAndSpinCount
SetConsoleCtrlHandler
GetStringTypeW
GetStringTypeA
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStartupInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
HeapDestroy
HeapCreate
HeapReAlloc
VirtualAlloc
VirtualFree
FatalAppExitA
GetModuleHandleA
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapSize
GetCurrentThreadId
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetWindowsDirectoryW
lstrcpyW
GetSystemDirectoryW
SetCurrentDirectoryW
CreateProcessW
WaitForSingleObject
DeleteFileW
RemoveDirectoryW
Sleep
ExitProcess
GetCurrentProcess
DuplicateHandle
GetPrivateProfileSectionW
TerminateProcess
MoveFileExW
GetThreadContext
VirtualProtectEx
WriteProcessMemory
FlushInstructionCache
SetThreadContext
ResumeThread
GetModuleFileNameW
lstrlenW
lstrcpynW
GetProcessHeap
HeapAlloc
HeapFree
WriteFile
ReadFile
SetFilePointer
MultiByteToWideChar
WideCharToMultiByte
CreateFileW
GetFileSize
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
CloseHandle
lstrlenA
GetLastError
SetLastError
GetShortPathNameW
WritePrivateProfileSectionW
GetDiskFreeSpaceW
GetModuleFileNameA
GetStdHandle
GetStartupInfoW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlUnwind
FreeResource
lstrcmpiA
GetPrivateProfileSectionNamesA
GetPrivateProfileIntA
lstrcatA
GetPrivateProfileStringA
lstrcpynA
lstrcmpA
SearchPathW
VirtualProtect
SystemTimeToFileTime
QueryPerformanceCounter
SetEvent
ResetEvent
GetCurrentProcessId
GetEnvironmentVariableW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetDateFormatW
GetTimeFormatW
FindResourceExW
SetFileTime
OpenProcess
GetProcessTimes

user32

DispatchMessageW
PostMessageW
KillTimer
PostQuitMessage
SetTimer
DefWindowProcW
TranslateMessage
wvsprintfW
CharPrevW
LoadImageW
CreateDialogParamW
MoveWindow
GetParent
GetWindowTextW
SetCursor
GetDlgItemTextW
GetWindow
SetFocus
SetDlgItemTextW
SetForegroundWindow
SetActiveWindow
GetDlgCtrlID
GetDC
FillRect
GetSysColor
GetSysColorBrush
GetSystemMetrics
SetRect
FindWindowW
IntersectRect
SubtractRect
CreateDialogIndirectParamW
CharNextW
EnableWindow
GetWindowRect
ScreenToClient
FindWindowExW
SendMessageW
IsDialogMessageW
IsWindow
DestroyWindow
SendDlgItemMessageW
MessageBoxW
WaitForInputIdle
GetWindowLongW
SetWindowLongW
GetClientRect
ClientToScreen
ExitWindowsEx
CharUpperW
CallWindowProcW
MapWindowPoints
GetPropW
DrawFocusRect
InflateRect
DrawTextW
CopyRect
GetClassNameW
RemovePropW
SetPropW
wsprintfA
EnumChildWindows
UpdateWindow
InvalidateRect
DrawIcon
MapDialogRect
RegisterClassExW
SetWindowPos
GetWindowDC
ReleaseDC
EndPaint
BeginPaint
EndDialog
SetWindowTextW
GetDlgItem
ShowWindow
DialogBoxIndirectParamW
GetDesktopWindow
MsgWaitForMultipleObjects
PeekMessageW
wsprintfW
LoadIconW
LoadCursorW
RegisterClassW
CreateWindowExW
GetMessageW

gdi32

CreateHalftonePalette
UnrealizeObject
SelectPalette
RealizePalette
CreateFontW
SetBkMode
GetDeviceCaps
CreateSolidBrush
GetDIBColorTable
CreateFontIndirectW
TranslateCharsetInfo
CreateCompatibleDC
SelectObject
BitBlt
CreateDIBitmap
DeleteDC
DeleteObject
GetStockObject
RestoreDC
GetTextExtentPoint32W
CreatePalette
CreatePatternBrush
CreateCompatibleBitmap
CreateDCW
DeleteMetaFile
SetMetaFileBitsEx
SetStretchBltMode
SelectClipRgn
CreateRectRgn
SetPixel
PatBlt
PlayMetaFile
SetBkColor
StretchBlt
CreateBitmap
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SetMapMode
SaveDC
GetSystemPaletteEntries
GetObjectW
SetTextColor

advapi32

OpenThreadToken
OpenProcessToken
RegEnumKeyW
RegCreateKeyW
LookupPrivilegeValueW
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
InitializeSecurityDescriptor
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
RegEnumKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
RegEnumValueW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
AdjustTokenPrivileges
RegOpenKeyW

shell32

SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteW
ShellExecuteExW
CommandLineToArgvW

ole32

CoCreateInstance
CLSIDFromProgID
CoTaskMemAlloc
CoCreateGuid
CreateItemMoniker
ProgIDFromCLSID
CoTaskMemFree
CoInitialize
CoUninitialize
CoInitializeSecurity
GetRunningObjectTable
CoTaskMemRealloc
StringFromGUID2

oleaut32

VarUI4FromStr
SystemTimeToVariantTime
LoadTypeLi
RegisterTypeLi
SetErrorInfo
CreateErrorInfo
VarBstrCmp
GetErrorInfo
VariantChangeType
VariantClear
VarBstrFromDate
SysStringByteLen
SysAllocStringByteLen
SysAllocString
VarBstrCat
SysStringLen
SysReAllocStringLen
SysAllocStringLen
SysFreeString

rpcrt4

UuidCreate
UuidToStringW
RpcStringFreeW
UuidFromStringW

Sections

.text
Size: 911KB - Virtual size: 910KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 201KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 312KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2c26bd4011581083f5d4c005563fb8e

Headers

DLL Characteristics

File Characteristics

Imports

version

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

rpcrt4

Sections

.text Size: 911KB - Virtual size: 910KB

.rdata Size: 201KB - Virtual size: 200KB

.data Size: 10KB - Virtual size: 34KB

.rsrc Size: 312KB - Virtual size: 311KB

.text
Size: 911KB - Virtual size: 910KB

.rdata
Size: 201KB - Virtual size: 200KB

.data
Size: 10KB - Virtual size: 34KB

.rsrc
Size: 312KB - Virtual size: 311KB