File: d49e9b5232971f4af6430b720dcc80ad

Metadata
File name:N/A
File type:PE32 executable (GUI) Intel 80386, for MS Windows
File size:332928
Analysis date:N/A
MD5:d49e9b5232971f4af6430b720dcc80ad
SHA1:c5a8ef3e567aecb84f68db5ba9db1b502f5cc07a
SHA256:c41df56283f30a7935a304c3e611e3576e75ca72e441a7188fe8a977f60e85a0
SHA512:N/A
SSDEEP:N/A
IMPHASH:N/A
Authentihash:N/A
Related resources
PE TypePE32
Internal NameTSULoader
Product Code{1298F6E9-9E4C-4B3B-9549-0E50C623D394}
Package Code{B9AAC89A-7AF5-4684-A46F-32D76249EA6C}
CommentsWinNT (x86) Unicode Lib Rel
A Company NameN/A
File Size325 kB
Machine TypeIntel 386 or later, and compatibles
File OSWin32
Arguments/x
Code Size7680
OS Version4.0
Entry Point0x14db
File Flags Mask0x003f
Linker Version8.0
File SubtypeN/A
Uninitialized Data SizeN/A
File VersionN/A
Initialized Data Size318976
File DescriptionInstaller for Appit
Product Version Number1.0.0.2
EmailN/A
Yright 2014 Great SoftN/A
Product NameAppit
MIME Typeapplication/octet-stream
A Special BuildN/A
Character SetUnicode
Language CodeNeutral
File Version Number2014.2.18.1622
File TypeWin32 EXE
A Legal CopyrightN/A
SubsystemWindows GUI
Original FilenameTSULoader.exe
Object File TypeExecutable application
Image Version6.0
Tag 42181622N/A
Web SiteN/A
File FlagsSpecial build
At SoftN/A
Subsystem Version4.0
Product Version1.0.0.2
Source:
APTNotes
Cyber threat intelligence reports associated with d49e9b5232971f4af6430b720dcc80ad.
Loading...
Domains
Domains the malware sample communicates with.
Hosts
Hosts the malware sample communicates with.
HTTP Requests
HTTP requests the malware sample makes.
AV Detections
AV detection names associated with the malware sample.
AVGMalSign.Generic.256
AgnitumTrojan.AntiFW!
AhnLab-V3PUP/Win32.TSULoader
AntiVirAdware/InstalleRex.MIK
Antiy-AVLRiskWare[Downloader:not-a-virus,HEUR]/Win32.AdLoad
AvastWin32:InstalleRex-BI [PUP]
ComodoApplication.Win32.InstalleRex.KG
DrWebTrojan.WebPick.16
ESET-NOD32a variant of Win32/InstalleRex.P
FortinetRiskware/InstalleRex
GDataWin32.Application.InstalleRex.E
K7GWUnwanted-Program ( 0049574e1 )
KasperskyTrojan.Win32.AntiFW.b
KingsoftWin32.Troj.AntiFW.b.(kcloud)
MalwarebytesPUP.Optional.Installex
McAfeePUP-FHQ!D49E9B523297
McAfee-GW-EditionPUP-FHQ!D49E9B523297
NANO-AntivirusRiskware.Win32.Downware.cukhmy
RisingPE:PUF.InstallRex!1.9E4C
SophosInstallRex
SymantecDownload.Adware
VBA32Downloader.AdLoad
VIPRETrojan.Win32.Generic!BT
Mutants
Mutants created by the malware sample.
Registry keys
Registry keys created by the malware sample.
Comments
User comments about d49e9b5232971f4af6430b720dcc80ad.
NOTICE: We have updated our privacy terms and conditions in accordance to GDPR. By using our site, you acknowledge that you have read and understand our Privacy Policy. Your use of ThreatMiner’s Products and Services is subject to these policies and terms.