普-票[.]7z | Triage

Sharing

Copy URL Twitter E-mail

General

Target

普-票.7z
Size

6KB
MD5

838aa28d241254faefd604ffe5b48be6
SHA1

1c55839a87c70b449cb86fa9ea7aed4be48db2bd
SHA256

e877c0c7f72cc43cbe2f9b919ba4dcec3272be3cf804aeb2c5bb2d9585bfba85
SHA512

a0ed8624969c44e29eb21f4feb096c326b828d373552b8d225fa0ce687fbea7e1203ae1618ae5722e9b3cf730e1a6b9d6c7a790cf7db161eafa0e35b0fefbb94
SSDEEP

192:FMUb29aqOu8WCYQy63Pjvk0qu054L4bwxNyCjaX:FMi2HCYA350uiwxNyCj8

Score

1^/10

Malware Config

Signatures

Files

普-票.7z
.7z
0202302221098.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ