EXEWIN32HK _2005.DLLW IN32HK_200 5.INI?WIN3 2HK_2005.I NILAWYERNA MES.TXTINT EROP.IMANA GE.DLLCopi trak Deskt opIEVIEWER. 0 /NOCONTR OL PEUSER= %s PEID=%s PEIP=%s P EINI-SCAN= %sLTSP元2. OFFICE.IN TEROP.POWE RPOINT.DLL MICROSOFT. OFFICE.DLL Copitrak D esktopMICR OSOFT.OFFI CE.INTEROP. String found in binary or memory: Re-Login t o apply ne w changes. LastErro r: 0x%XRun Local.Co pitrak Des ktop - Inv alid PathC anRun fail ed!LtProcM on.Exe/INS TALL BMPBACKGRO UND_TMS3.B MPBACKGROU ND_TMS3_IM G.BMPBACKG ROUND_TMS3 _WP.BMPHOT KEY_DOWN.B MPHOTKEY_U P.BMPHOTKE Y_IDLE.BMP SMARTKEY_D OWN.BMPSMA RTKEY_UP.B MPSMARTKEY _IDLE.BMPA ppIDCLSIDC omponent C ategoriesF ileTypeInt erfaceHard wareMimeSA MSECURITYS YSTEMSoftw areTypeLib /SERVICEGl obal\Ctk.C opitrakDes ktop.ShutD ownError: Failed to open ShutD ownEvent o bjectFaile d to open ShutDownEv ent object. String found in binary or memory: LASERTAK_2 005_BASE_M UTEX%s\LT2 005_SETTIN GS.INIDela yedLoadMas ter Settin gsBACKGROU ND.BMPBACK GROUND_TMS. Sample might require command line arguments
Key opened: HKEY_CURRE NT_USER\So ftware\Pol icies\Micr osoft\Wind ows\Safer\ CodeIdenti fiers text IMAGE _SCN_MEM_E XECUTE, IM AGE_SCN_CN T_CODE, IM AGE_SCN_ME M_READ text section and no other executable section Static PE information: Resource n ame: RT_IC ON type: G LS_BINARY_ LSB_FIRSTĬlassification label: sus25.evad file has an executable. exeįound potential string decryption / allocating functionsĬode function: String fun ction: 00C 7A180 appe ars 31 tim esĬode function: String fun ction: 00C 74CBB appe ars 39 tim esĬode function: String fun ction: 00C 7A0A3 appe ars 68 tim esĬode function: String fun ction: 00C 94705 appe ars 46 tim es Source: C:\Users\u ser\Deskto p\Copitrak Desktop10.
0 kommentar(er)
