cad2020注册机[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cad2020注册机.exe
Size

2.8MB
MD5

e5c48f53e13c5a0df9fb0762519f0e43
SHA1

a0dea65cf8b55f4e42da4c06cd0e73fa8e050d2a
SHA256

8a9828cfe10ff7201475c50e4d262b64daa17125e51695f00b2d82d31efa4b75
SHA512

c5589dad3688fd2031aa351e5c85cb27ccba98a722bca33bdc050f7fc8db6a9bab107ab7585c179c96c0f21e506f7c3d9be0bb846bba57a6b21d4f68ddc3c3ed
SSDEEP

24576:F12btzr8XTsAUtrKckHHApc5IvzeXoOHXbJ+gMMO5VNp0+Yo86jtDWQNzDptxcDl:F12Zzry3bJ+gMMO5VNp0+Yo8tQbI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cad2020注册机.exe

Files

cad2020注册机.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 647KB - Virtual size: 646KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ