点击此处-安装中文包[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

点击此处-安装中文包.exe
Size

28KB
MD5

3d1efcb8ffb93707060a0f7971ba227f
SHA1

4be8d74434d314cef7949df6ee0ff09f47c4cd1c
SHA256

55e4653fe80a141d33fc9bf5f652387bf19b1278f45d53e2a969be0b0667d6e0
SHA512

f4712caa6121c8bc84075eb00d46c620bb90988ba5f13d4fe926d1f766f05c8bbddd30d834db8fbb04df90455eb40d94ba0e0eb1bf921d89c88ffb5d4b45e3ea
SSDEEP

384:1dO/CJJRlXe+TJzKvoyV06POX7fYYQU0BcMq1elYGoGCJEF8ZpHV+:u/CJvlXxzpRX7fYYFac4sEFiRA

Score

1^/10

Malware Config

Signatures

Files

点击此处-安装中文包.exe
.exe windows x64

005b5709b7bee97b2626acbe22b6901a

Code Sign

6a:80:e3:2f:6e:9a:72:a3:48:e1:e5:73:08:a0:03:28
Certificate

Issuer

CN=Kaspersky Lab dfp JSC

Not Before

17/05/2023, 16:45

Not After

31/12/2039, 23:59

Subject

CN=Kaspersky Lab dfp JSC

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

27:8b:24:13:d2:a2:bb:34:5f:48:9b:62:bf:5a:84:74:4e:82:cc:cf:6e:37:8b:b0:a0:53:0a:a6:33:02:45:5f
Signer

Actual PE Digest

27:8b:24:13:d2:a2:bb:34:5f:48:9b:62:bf:5a:84:74:4e:82:cc:cf:6e:37:8b:b0:a0:53:0a:a6:33:02:45:5f

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrlenA
lstrcmpiW

user32

MessageBoxW

ole32

CoCreateInstance
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
CoInitialize

oleaut32

VariantClear
VariantInit
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SysFreeString
SysAllocString

opencl

clSetKernelArg
clWaitForEvents
clCreateUserEvent
clEnqueueReadBuffer
clEnqueueWriteBuffer
clEnqueueNDRangeKernel
clCreateKernel
clReleaseKernel
clGetPlatformIDs
clCreateContextFromType
clReleaseContext
clGetContextInfo
clCreateCommandQueueWithProperties
clReleaseCommandQueue
clCreateBuffer
clReleaseMemObject
clCreateProgramWithSource
clReleaseProgram
clBuildProgram

Exports

Exports

goapp

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 276B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

005b5709b7bee97b2626acbe22b6901a

Code Sign

6a:80:e3:2f:6e:9a:72:a3:48:e1:e5:73:08:a0:03:28Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

27:8b:24:13:d2:a2:bb:34:5f:48:9b:62:bf:5a:84:74:4e:82:cc:cf:6e:37:8b:b0:a0:53:0a:a6:33:02:45:5fSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

opencl

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 3KB

.pdata Size: 512B - Virtual size: 276B

.rsrc Size: 4KB - Virtual size: 4KB

6a:80:e3:2f:6e:9a:72:a3:48:e1:e5:73:08:a0:03:28
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

27:8b:24:13:d2:a2:bb:34:5f:48:9b:62:bf:5a:84:74:4e:82:cc:cf:6e:37:8b:b0:a0:53:0a:a6:33:02:45:5f
Signer

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 3KB

.pdata
Size: 512B - Virtual size: 276B

.rsrc
Size: 4KB - Virtual size: 4KB