shenheCenter27[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

shenheCenter27.exe
Size

864KB
MD5

c4768a5be8dd02e80c50750a5488138a
SHA1

eaca8c44edd34ca044d8ecdbf8f829ec0503bcb9
SHA256

6b409fbfd4b0469cfbec8be6cf114393662d9508a356f64a5ebbfe3587877bf4
SHA512

23e2707ea8f2c22e6695b08602e04b50bec30cd0e54c634bd107471b6abdcbabac1611b84d0ec5df2e9f66ac892498c26fb724ffdc16fa14b73db4b24b785c15
SSDEEP

12288:1D9AeXLeBDMwJ4k3LS5x4o5fW5nkVvPIyCo37LZnjfO:R9U1MwJ4k3W5uo5fW5ncPIyL3ZnK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
shenheCenter27.exe

Files

shenheCenter27.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 395KB - Virtual size: 395KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 457KB - Virtual size: 457KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ