IIS一键优化[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

IIS一键优化.exe
Size

209KB
MD5

8de4de909c789eac0a14edeacb41fc8d
SHA1

edaef665540396bc37d4c64e36edb9105b79884a
SHA256

c4bcadc6452cc499b418cbb8b8e0906575ababbff764b7da7f188d9c83431af9
SHA512

0d8b017a3ddf37f7a7417872036e128db974041755f1d72345b6764c4a8b9c2d6ca5588f6e8a94b94de59b613483ca430d0c9e9bec67fbbadef0f02f585a218a
SSDEEP

6144:fCCxkdGblZ/cOds/VXRw91CCxwdGblZ/cOds/l:a8kd+j/adXH8wd+j/at

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
IIS一键优化.exe

Files

IIS一键优化.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ