7404ce8b5289f67679bcd4bb3646993e

Sharing

Copy URL Twitter E-mail

General

Target

7404ce8b5289f67679bcd4bb3646993e
Size

1.2MB
MD5

7404ce8b5289f67679bcd4bb3646993e
SHA1

ee774e2cf7379da2b7672fe15b5b155e0ff8871b
SHA256

8fd9e21dabf67531767578281d09fe870e4e141ad099b8ccd134dbc298f7e5be
SHA512

1217d3a2e3c82f0b4c5c2ac62f0329eefe2dd7eb1670ecf89f2c8ea780eaa9d4b3c7789a54a33b9dd04bfd99f43d3fa7ca06d01b51f888a3f342ee845dcbaf8b
SSDEEP

24576:iiuUp0GS+JM40cDWxuChG06KRvDaQYAzW31BNnCYfsRvTl0DKLGJ:iiua0d+JM40cDU7hBdFpG3NCYfsp3KJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/RockXP4.exe
unpack001/s2csplash.dll
unpack001/此软件的原装汉化在www.soft2cn.com下载.推荐

Files

7404ce8b5289f67679bcd4bb3646993e
.rar
RockXP4.exe
.exe windows:4 windows x86 arch:x86

769589308ca4f5f574493e68254bfef8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
FormatMessageA
GetLastError
SetLastError
VirtualAlloc
CloseHandle
MapViewOfFile
CreateFileMappingA
VirtualFree
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameA
GetModuleFileNameW
GetVersionExA
VirtualQuery
SetFilePointer
ReadFile
CreateFileA
UnmapViewOfFile
WideCharToMultiByte
OpenFileMappingA
GetCurrentProcessId
Sleep
lstrlenA
TlsSetValue
GetACP

user32

MessageBoxA
CreateWindowExW
GetKeyboardType

advapi32

RegSetValueExA
CredFree
RegQueryValueExA

comctl32

ImageList_SetIconSize

comdlg32

GetSaveFileNameW

crypt32

CryptUnprotectData

gdi32

UnrealizeObject

mpr

WNetAddConnection2A

ole32

CreateStreamOnHGlobal

oleaut32

SafeArrayPtrOfIndex
CreateErrorInfo
SysFreeString

rasapi32

RasGetEntryPropertiesA

shell32

SHGetSpecialFolderPathA
ShellExecuteA

version

VerQueryValueA

wsock32

WSACleanup

��ԭװ��www.soft2cn.com��.�ƽ�

HH_By_Soft2CN

Sections

RockXP4a
Size: 40KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
pwdump2_src.7z
.7z
pwdump2_src/DISCLAIMER
pwdump2_src/README.html
.html
pwdump2_src/getpid.c
pwdump2_src/gpl.txt
pwdump2_src/pwdump2.c
pwdump2_src/pwdump2.dsp
pwdump2_src/pwdump2.h
pwdump2_src/samdump.c
pwdump2_src/samdump.dsp
s2csplash.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

S2CSplash

Sections

!Splash0
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

!Splash1
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

!Splash2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
此软件的原装汉化在www.soft2cn.com下载.推荐
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

HH_By_Soft2CN
Reserverd
fzh_s2c
refreshDesktop

Sections

.Upack
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
汉化手记.URL
汉化说明.txt

Sharing

General

Malware Config

Signatures

Files

769589308ca4f5f574493e68254bfef8

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

comdlg32

crypt32

gdi32

mpr

ole32

oleaut32

rasapi32

shell32

version

wsock32

��������ԭװ������www.soft2cn.com����.�ƽ�

Sections

RockXP4a Size: 40KB - Virtual size: 1.7MB

Headers

File Characteristics

Exports

Exports

Sections

!Splash0 Size: - Virtual size: 92KB

!Splash1 Size: 39KB - Virtual size: 40KB

!Splash2 Size: - Virtual size: 3KB

Headers

File Characteristics

Exports

Exports

Sections

.Upack Size: - Virtual size: 72KB

.rsrc Size: 22KB - Virtual size: 52KB

��ԭװ��www.soft2cn.com��.�ƽ�

RockXP4a
Size: 40KB - Virtual size: 1.7MB

!Splash0
Size: - Virtual size: 92KB

!Splash1
Size: 39KB - Virtual size: 40KB

!Splash2
Size: - Virtual size: 3KB

.Upack
Size: - Virtual size: 72KB

.rsrc
Size: 22KB - Virtual size: 52KB