a6af2f38ce549905690095c0186951d1a559b51f58cfc1c73d883d952e8b728c

Sharing

Copy URL Twitter E-mail

General

Target

a6af2f38ce549905690095c0186951d1a559b51f58cfc1c73d883d952e8b728c
Size

99KB
MD5

7b5c9b982a513f85efa2852064df44d1
SHA1

3a6913626ed5d58f9022882e3b4902c1ed953c98
SHA256

a6af2f38ce549905690095c0186951d1a559b51f58cfc1c73d883d952e8b728c
SHA512

825afc562f0a1215e5b0d3eb7fedf2f3020d25a0b5ea4a5b2d5d3801bc5f28a512bc97bacc5324696a5240d9b9e9b99b33edea526a299de32f6c53faa1412801
SSDEEP

3072:0WOpc9JHDVJ+5DEcrZfXOpxppvjho+1AQJts6u:0WOC9JjGpEc1OZtho+1ApL

Score

N/A

Malware Config

Signatures

Files

a6af2f38ce549905690095c0186951d1a559b51f58cfc1c73d883d952e8b728c
.zip
2022-07-28_090756.png
.png
2022-07-28_090816.png
.png
Form1.frm
.vbs
Form1.frx
Module1.bas
Module2.bas
.vbs
guanji/Form1.frm
.vbs
guanji/Form1.frx
guanji/Module1.bas
guanji/WMI_GetSystemVersion.bas
guanji/YanShi.bas
.vbs
guanji/shutdown.RES
guanji/stop.ico
guanji/工程1.vbp
guanji/工程1.vbw
msgGuanJi.exe
.exe windows x86

b4259a7681dea47eb25b686979e9255d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaStrI2
_CIcos
_adj_fptan
__vbaFreeVar
__vbaStrVarMove
__vbaEnd
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
_adj_fprem1
__vbaCopyBytes
__vbaStrCat
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaOnError
__vbaObjSet
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
__vbaStrCmp
__vbaObjVar
DllFunctionCall
ord670
_adj_fpatan
EVENT_SINK_Release
ord600
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
ord716
__vbaFPException
__vbaStrVarVal
__vbaVarCat
_CIlog
__vbaErrorOverflow
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
ord681
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaLateMemCall
__vbaVarDup
__vbaStrToAnsi
_CIatan
ord618
__vbaStrMove
ord619
_allmul
_CItan
_CIexp
__vbaFreeObj
__vbaFreeStr

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
关机助手.exe
.exe windows x86

3ab3f6d3cbc02b51e2e47d9560a6c057

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaStrI2
_CIcos
_adj_fptan
__vbaAryMove
__vbaFreeVar
__vbaStrVarMove
__vbaEnd
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
_adj_fprem1
ord626
__vbaForEachCollAd
__vbaStrCat
ord660
ord661
__vbaHresultCheckObj
ord662
_adj_fdiv_m32
__vbaVarTstLe
__vbaAryDestruct
__vbaObjSet
ord595
__vbaOnError
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
ord598
__vbaFpR4
ord520
_CIsin
__vbaChkstk
__vbaFileClose
EVENT_SINK_AddRef
__vbaStrCmp
ord529
__vbaPutOwner3
__vbaObjVar
ord670
_adj_fpatan
EVENT_SINK_Release
ord600
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
__vbaPrintFile
ord712
_adj_fprem
_adj_fdivr_m64
ord608
ord716
__vbaFPException
__vbaVarCat
ord535
ord645
_CIlog
__vbaErrorOverflow
__vbaFileOpen
__vbaVar2Vec
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
ord681
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaLateMemCall
ord612
__vbaVarDup
__vbaLateMemCallLd
ord617
_CIatan
ord618
__vbaStrMove
ord619
_allmul
_CItan
__vbaNextEachCollAd
_CIexp
__vbaFreeObj
__vbaFreeStr

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
工程1.vbp
工程1.vbw
爱分享导航.url
.url

Sharing

General

Malware Config

Signatures

Files

b4259a7681dea47eb25b686979e9255d

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 24KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 12KB - Virtual size: 10KB

3ab3f6d3cbc02b51e2e47d9560a6c057

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 28KB - Virtual size: 27KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 56KB - Virtual size: 54KB

.text
Size: 24KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 12KB - Virtual size: 10KB

.text
Size: 28KB - Virtual size: 27KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 56KB - Virtual size: 54KB