0a3b093cbb9e274cf75154f6451cb73c05be0a80ad178bbfce5d70e1f8c36f0a

Sharing

Copy URL Twitter E-mail

General

Target

0a3b093cbb9e274cf75154f6451cb73c05be0a80ad178bbfce5d70e1f8c36f0a
Size

4.5MB
MD5

b4a2a0a04b8bba74ee1add61486230a5
SHA1

0d1e1f47be29e3711b0dbf6e5dfeccffa4bdb871
SHA256

0a3b093cbb9e274cf75154f6451cb73c05be0a80ad178bbfce5d70e1f8c36f0a
SHA512

61e647cb95a0864f063a807f06491d29e2186eeacd1da1fc1eb080202caf8a390e4107444314ff3d5fbb1abe32770750f82b1db57bb132549a61ade5470eefd9
SSDEEP

98304:n2Lj99Go/cPMQt124b5dQ4smlXTunldegcNApsSRG7/3U3ZjTmreHTpj5d:2Lj9EqcPzzrEmljuegcNVSRGo317T

Score

N/A

Malware Config

Signatures

Files

0a3b093cbb9e274cf75154f6451cb73c05be0a80ad178bbfce5d70e1f8c36f0a
.rar
黑防灰鸽子脱壳版/Cache/CServer.dat
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 644KB - Virtual size: 644KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 7KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 35B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
黑防灰鸽子脱壳版/Cache/巴巴网址之家.url
.url
黑防灰鸽子脱壳版/Cache/谷普下载站.htm
黑防灰鸽子脱壳版/Cache/软件_readme.txt
黑防灰鸽子脱壳版/Config/2007-08-15_114915.dat
黑防灰鸽子脱壳版/Config/2007-08-15_114915.ini
黑防灰鸽子脱壳版/Operate.ini
黑防灰鸽子脱壳版/SOUND/downfile.wav
黑防灰鸽子脱壳版/SOUND/login.wav
黑防灰鸽子脱壳版/SOUND/offline.wav
黑防灰鸽子脱壳版/SOUND/setting.wav
黑防灰鸽子脱壳版/SOUND/upfile.wav
黑防灰鸽子脱壳版/dat/QQwry.dat
黑防灰鸽子脱壳版/dat/ResHacker.EXE
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 683KB - Virtual size: 682KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
黑防灰鸽子脱壳版/黑防灰鸽子脱壳版.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.MiB
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MiB
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MiB
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MiB
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MiB
Size: 34B - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.!rc!
Size: - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MiB
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mackt
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 644KB - Virtual size: 644KB

DATA Size: 11KB - Virtual size: 10KB

BSS Size: - Virtual size: 7KB

.idata Size: 13KB - Virtual size: 12KB

.tls Size: - Virtual size: 20B

.rdata Size: 512B - Virtual size: 35B

.reloc Size: 41KB - Virtual size: 40KB

.rsrc Size: 32KB - Virtual size: 32KB

Headers

File Characteristics

Sections

CODE Size: 683KB - Virtual size: 682KB

DATA Size: 7KB - Virtual size: 7KB

BSS Size: - Virtual size: 2KB

.idata Size: 10KB - Virtual size: 9KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 37KB - Virtual size: 36KB

.rsrc Size: 122KB - Virtual size: 122KB

Headers

File Characteristics

Sections

.MiB Size: 1.8MB - Virtual size: 1.8MB

.MiB Size: 25KB - Virtual size: 28KB

.MiB Size: - Virtual size: 24KB

.MiB Size: 6KB - Virtual size: 20KB

.MiB Size: 34B - Virtual size: 112KB

.!rc! Size: - Virtual size: 2.2MB

.MiB Size: 24KB - Virtual size: 28KB

.mackt Size: 11KB - Virtual size: 12KB

.rsrc Size: 2.4MB - Virtual size: 2.4MB

CODE
Size: 644KB - Virtual size: 644KB

DATA
Size: 11KB - Virtual size: 10KB

BSS
Size: - Virtual size: 7KB

.idata
Size: 13KB - Virtual size: 12KB

.tls
Size: - Virtual size: 20B

.rdata
Size: 512B - Virtual size: 35B

.reloc
Size: 41KB - Virtual size: 40KB

.rsrc
Size: 32KB - Virtual size: 32KB

CODE
Size: 683KB - Virtual size: 682KB

DATA
Size: 7KB - Virtual size: 7KB

BSS
Size: - Virtual size: 2KB

.idata
Size: 10KB - Virtual size: 9KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 37KB - Virtual size: 36KB

.rsrc
Size: 122KB - Virtual size: 122KB

.MiB
Size: 1.8MB - Virtual size: 1.8MB

.MiB
Size: 25KB - Virtual size: 28KB

.MiB
Size: - Virtual size: 24KB

.MiB
Size: 6KB - Virtual size: 20KB

.MiB
Size: 34B - Virtual size: 112KB

.!rc!
Size: - Virtual size: 2.2MB

.MiB
Size: 24KB - Virtual size: 28KB

.mackt
Size: 11KB - Virtual size: 12KB

.rsrc
Size: 2.4MB - Virtual size: 2.4MB