LimeWire[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

LimeWire.exe
Size

492KB
MD5

2b7f2dc5741bb18f7f5ec7558da68197
SHA1

850d6c91c1b0114e6585f5f7924ca7e8cb9ec97c
SHA256

1ff8c71e2b4931cc62a624b465d6623ec41d8f457b81b71d2d38474513ffb86d
SHA512

9de16fb7facb3cb7a959cd28eee572fdd03dd4fc62c8ee8603bc1d38b84e7369195eb12ce7f8a0997a69b6d30af716b8f81d4faa9893f72a711f87024719e012
SSDEEP

6144:/r9QR0c4dF6U9GTBgFEViPySU5P6blpp7EWcd0+jJnvHuw4x7QCfs5H++80LS:/r9ZdEUMT6FEoKS6CbqWwjJZ4Tf6lLS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
LimeWire.exe

Files

LimeWire.exe
.exe windows:4 windows x86 arch:x86

7fc0850e3e4b4bfbb47cfb23a6d26caf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CloseHandle
GetExitCodeThread
WaitForSingleObject
GetProcAddress
LoadLibraryA
SetCurrentDirectoryA
ExitProcess
FindFirstFileA
FindClose
GetDriveTypeA
FileTimeToLocalFileTime
QueryPerformanceFrequency
QueryPerformanceCounter
GetCurrentDirectoryA
GetModuleFileNameA
FileTimeToSystemTime
HeapFree
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
MultiByteToWideChar
ExitThread
GetCurrentThreadId
CreateThread
GetFileAttributesA
GetModuleHandleA
TerminateProcess
GetCurrentProcess
HeapReAlloc
GetStartupInfoA
GetCommandLineA
GetVersionExA
WriteFile
ReadFile
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
FlushFileBuffers
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
WideCharToMultiByte
SetEnvironmentVariableA
SetEnvironmentVariableW
UnhandledExceptionFilter
SetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
RtlUnwind
InterlockedExchange
VirtualQuery
GetACP
GetOEMCP
GetCPInfo
InitializeCriticalSection
CreateFileA
VirtualProtect
GetSystemInfo
CompareStringA
CompareStringW
HeapSize
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
LCMapStringA
LCMapStringW
SetEndOfFile
GetTimeZoneInformation
GetFullPathNameA

user32

MessageBoxA

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA

shell32

ShellExecuteA

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 372KB - Virtual size: 370KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fc0850e3e4b4bfbb47cfb23a6d26caf

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 4KB - Virtual size: 9KB

.rsrc Size: 372KB - Virtual size: 370KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 4KB - Virtual size: 9KB

.rsrc
Size: 372KB - Virtual size: 370KB