雨人ERP建行外联客户端端口配置[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

雨人ERP建行外联客户端端口配置.exe
Size

14KB
MD5

0e87aa4a693575ab70e2547a59a1055e
SHA1

7f486e7bc720b44f1d98753df8af138c9aaf2b4c
SHA256

e40639407389e0ce0320e2a278815f6ea86462ce9563c777de92e99034af8bac
SHA512

ce07b0f4182eedeb9bc164e1912d4751fc0458b2e0b793b2c45d7ab48f51176e6fcf917b034efb914c5fd0e77a9eb95e77c92e392c3ca1f87df697d19018a88c
SSDEEP

384:bPD0jGT9Rrzs9Fmz8NhbjTHQeKk90CGOiAZ03fffBo:LrcHQapd0W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
雨人ERP建行外联客户端端口配置.exe

Files

雨人ERP建行外联客户端端口配置.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ