Analysis Date2013-09-19 10:22:55
MD524f7094cb19b6dfd225ab62464609d72
SHA190adaeb1cec1d51924fe1e45be2656cf7fca39dc

Static Details:

File typePE32 executable for MS Windows (GUI) Intel 80386 32-bit
Section.text md5: f1e7fe6cca1a34f094a760683816f29e sha1: f39cbc0ef29e0054532df5a9a1a9664f4a3b946e size: 4096
Section.rdata md5: 2f8e59f8fbbea0d43f77fec03e507b7f sha1: 8a3e2d282c88068851a89380353c4f65845f0b24 size: 4096
Section.data md5: 20e7b01de2defe3faa75c4e933e8abd6 sha1: 038f48b4256666727732b055551781b371a78270 size: 512
Section.rsrc md5: 0f7540383f19eb4b1383d80563c9f266 sha1: 518527c6c1e9f2c332960579689324b892a28ed3 size: 25600
Timestamp2008-01-04 01:57:54
Pdb pathi:\src\Mi5\Win\Pim\RestartPalm\Debug\RestartPalm.pdb
VersionLegalCopyright: Copyright © 2003-2006 PalmSource Inc.
InternalName: restartpalm.exe
FileVersion: 6.2
CompanyName: Palmsource, Inc
ProductName: Palm OS Desktop
ProductVersion: 6.2
FileDescription: Restart Palm OS Desktop
OriginalFilename: restartpalm.exe
PEhashe056e94fa7658d87a54b1375809393754a54fc34
AVaviraW32/Infector.Gen8

Runtime Details:

Screenshot

Process
↳ C:\malware.exe

Network Details:


Raw Pcap

Strings
;;?;;;;;;;;
;?;;;;;;
;?;;;;;;;;
;?;;?;;;
?;?;;;;
?;?;;;;;;;
?;?;;;;;;;;;;
?;?;?;
??;?;;
???;?;;;
???;?;;;;;;;;
????;?;;;
????;?;;;;;
?????;?;;;;
1111111
1111111111
11111111111
1111111111111111
111111111111111111
_acmdln
_adjust_fdiv
_amsg_exit
Bell XS-1
_cexit
_c_exit
_controlfp
CreateProcessA
__CxxFrameHandler
@.data
Delete
DeleteCriticalSection
DesktopExe
DesktopPath
__dllonexit
D$$PQQj j
EnableWindow
_except_handler3
ExitProcess
FindWindowA
ForceRemove
GetCurrentProcessId
GetCurrentThreadId
__getmainargs
GetModuleHandleA
?GetPalmLangDllDirectory@@YAHAAV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@@Z
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
;HHHqaaa
hlp.dat
InitializeCriticalSection
_initterm
_ismbblead
i:\src\Mi5\Win\Pim\RestartPalm\Debug\RestartPalm.pdb
jthh&@
KERNEL32.dll
L$d_^d
LoadIconA
memset
MFC71.DLL
MSVCR71.dll
NoRemove
/NoSpl
OLEAUT32.dll
_onexit
PalmCmn.dll
PalmUI_PSI.dll
PalmUtility.dll
__p__commode
__p__fmode
?PUIGetProfileString@@YA?AV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@PBD00@Z
>>>q\\\
QueryPerformanceCounter
`.rdata
RestartPalmLang.dll
__security_error_handler
SendMessageA
__set_app_type
_setmbcp
SetTimer
__setusermatherr
!This program cannot be run in DOS mode.
USER32.dll
wwwwww
wwwwwww
_XcptFilter
xwwwww