1[.]zip | Triage

Submit
Reports

Overview

overview

9

Static

static

未命名�...��.exe

windows7_x64

9

未命名�...��.exe

windows10-2004_x64

9

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

未命名文件夹/泠熙·Mini2.0.7迷你辅助【最新版】.exe

Resource

win7-20220414-en

bootkit persistence upx

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

未命名文件夹/泠熙·Mini2.0.7迷你辅助【最新版】.exe

Resource

win10v2004-20220414-en

bootkit persistence upx

windows10-2004_x64

0 signatures

0 seconds

General

Target

1.zip
Size

1.3MB
MD5

f1f2a04f487419d2adaeaca3350fe67f
SHA1

a8125bd02e9156832c93526a051444c294e8bbe4
SHA256

a821906fbe4d896ef4616b5ef5ec2381b19bc0d91f818839f3b215a6a259995a
SHA512

8d4db84028b44ff8e7bf2a2f9d414719c79654ff7e628138569b2eb02748743614dd1fe35fabab9187497c54e4917f96dfb24c26cb4ab7d214fed208d8104874
SSDEEP

24576:Ro/4CDomuRp7N1HXLs1V3jQQ6yll9fgfX/btPbmFTZ8ehH6zz3ah7Ivc9a5I+NBJ:a/7omSRN1HXLsb3jZ6yll9fgPDtPbmFM

Score

N/A

Malware Config

Signatures

Files

1.zip
.zip
__MACOSX/未命名文件夹/._泠熙·Mini2.0.7迷你辅助【最新版】.exe
未命名文件夹/泠熙·Mini2.0.7迷你辅助【最新版】.exe
.exe windows x86

d128803d2ba0d54906e22e5353855bf4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamOut

ws2_32

WSACleanup

kernel32

SetLastError

user32

IsIconic

gdi32

TextOutA

winspool.drv

OpenPrinterA

advapi32

RegOpenKeyExA

shell32

ShellExecuteA

ole32

CLSIDFromString

oleaut32

LoadTypeLi

comctl32

ord17

comdlg32

ChooseColorA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 484KB - Virtual size: 952KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1000KB - Virtual size: 1000KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy