508165476b80ba320f46c814b56d49142b8ab65d55222f89aa82dccd64e2ca00 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

508165476b80ba320f46c814b56d49142b8ab65d55222f89aa82dccd64e2ca00
Size

598KB
MD5

fd4c049ffdface5cf875af23c2c55436
SHA1

7f99cdd8b647c45213aecb87b3c1b6b9b0c86c5c
SHA256

508165476b80ba320f46c814b56d49142b8ab65d55222f89aa82dccd64e2ca00
SHA512

c1fbeff3529e8d7b72a9930cac1451766f2393afa97a9f92b480f294bf68952bdd76956c2949955628818998156f0319f32e3f682e9b610aed3fdd05ee4320f9
SSDEEP

12288:FekMG859eMuWuG94Jz1UJ2gO1rOUZjHHDQPHyw1pkG87X:FehsW1CJpUJwpZDU11ifX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/47lLL9ARZ_278857944198_发票.exe

Files

508165476b80ba320f46c814b56d49142b8ab65d55222f89aa82dccd64e2ca00
.zip
47lLL9ARZ_278857944198_发票.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 644KB - Virtual size: 643KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 363KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ