General

Malware Config

Signatures

Files

• 17a9e5f1df1d5cb9f369bca0e3575b1fd12ec6827e7512806a141ef175e794b5

  .zip
• 2006֮2009ͨɱȾ/##ע##.txt
• 2006֮2009ͨɱȾ/77169.orgʹð˵.txt
• 2006֮2009ͨɱȾ/77169.org˵.htm

  .html
• 2006֮2009ͨɱȾ/Project2.exe

  .exe windows x86

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_BYTES_REVERSED_LO

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_BYTES_REVERSED_HI

  Sections

  .nsp0

  Size: - Virtual size: 868KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .nsp1

  Size: 335KB - Virtual size: 336KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .nsp2

  Size: - Virtual size: 7KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

• 2006֮2009ͨɱȾ/qqmail.asp

  .vbs
• 2006֮2009ͨɱȾ/ĺڿͬ˽ѧѵ.url

  .url
• 2006֮2009ͨɱȾ/ĺڿͬ.url

  .url
• 2006֮2009ͨɱȾ/¿ƼIDC˾.url

  .url
• 2006֮2009ͨɱȾ/¿Ƽȫά.url

  .url