硬盘检测HDTunePro[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

硬盘检测HDTunePro.exe
Size

716KB
MD5

43bb8950ff293dc5840733fcf323b5c3
SHA1

eef54c918be30715c182d857220e5a46c58034f8
SHA256

2f6743fb4bf3220ed0c83ab7e35e7ca8206220a1166ffd45deb6b5826dda06f7
SHA512

019e34f501e975b4d745d3c29fbb86551aaa019959284ae5041aabf09bf99933b2bb222f0b430c731d12203954c77cafe561d6275b86f78287d84771d2ce594a
SSDEEP

12288:A5g44HH0xBWBrNrMaJwEUxC/7aNuxpPGAAoi5:A5gTHHoWpJwi/+mj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
硬盘检测HDTunePro.exe

Files

硬盘检测HDTunePro.exe
.exe windows x86

171a31ba05345078ef101a808b269841

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

powrprof

ReadPwrScheme

pdh

PdhAddCounterA

psapi

EnumProcessModules

version

GetFileVersionInfoSizeA

shfolder

SHGetFolderPathA

user32

UnpackDDElParam

gdi32

CombineRgn

comdlg32

ChooseColorA

winspool.drv

ClosePrinter

advapi32

RegQueryValueExA

shell32

DragQueryFileA

comctl32

ImageList_ReplaceIcon

oledlg

ord8

ole32

CoFreeUnusedLibraries

olepro32

ord253

oleaut32

SysFreeString

Sections

.MYCRACK
Size: 283KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MYCRACK
Size: 432KB - Virtual size: 436KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE