主机漏洞报表_20230816090145[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

主机漏洞报表_20230816090145.zip
Size

8.4MB
MD5

142b4fbcb53168e3844516f63834fe44
SHA1

c6fce67ce478b322f4d557786c47c4f377db790d
SHA256

e06f84039f2c231f546604b5df49dcb2099a131c69bc7ee3d0b8ace7ba4f2eee
SHA512

7752a1e3c784c82e35ec7c729f9fc16b727faf13c36eb6d2a227c06a4574fabf391573d0e788db85cbc5a53f86081198d1d33c961297d6bba57db55616d7f05d
SSDEEP

196608:rjpOBalDf2QbqSGWSTFL2TcrE1FM+dmnU1rxlOtfCxA:rN0al72QbZGvJ9CFXmn7sA

Score

3^/10

pyinstaller

Malware Config

Signatures

Detects Pyinstaller 1 IoCs

pyinstaller

resource	yara_rule
static1/unpack001/主机漏洞报表_20230816090145/image/thumbnails/mark4/thumb/IntegratedOffice.exe	pyinstaller

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/主机漏洞报表_20230816090145/image/thumbnails/mark4/thumb/IntegratedOffice.exe
unpack001/主机漏洞报表_20230816090145/image/thumbnails/rank5/thumb/curl.exe

Files

主机漏洞报表_20230816090145.zip
.zip
主机漏洞报表_20230816090145/css/common.css
主机漏洞报表_20230816090145/image/close.png
.png
主机漏洞报表_20230816090145/image/down.png
.png
主机漏洞报表_20230816090145/image/light.png
.png
主机漏洞报表_20230816090145/image/main_first_title.png
.png
主机漏洞报表_20230816090145/image/main_leadsec.png
.png
主机漏洞报表_20230816090145/image/main_venus.png
.png
主机漏洞报表_20230816090145/image/mark1.png
.png
主机漏洞报表_20230816090145/image/mark2.png
.png
主机漏洞报表_20230816090145/image/mark3.png
.png
主机漏洞报表_20230816090145/image/mark4.png
.png
主机漏洞报表_20230816090145/image/mark5.png
.png
主机漏洞报表_20230816090145/image/open.png
.png
主机漏洞报表_20230816090145/image/rank1.png
.png
主机漏洞报表_20230816090145/image/rank2.png
.png
主机漏洞报表_20230816090145/image/rank3.png
.png
主机漏洞报表_20230816090145/image/rank4.png
.png
主机漏洞报表_20230816090145/image/rank5.png
.png
主机漏洞报表_20230816090145/image/rank6.png
.png
主机漏洞报表_20230816090145/image/report_title_1.png
.png
主机漏洞报表_20230816090145/image/report_title_2.png
.png
主机漏洞报表_20230816090145/image/right.png
.png
主机漏洞报表_20230816090145/image/thumbnails/close/thumb/close.png
.png
主机漏洞报表_20230816090145/image/thumbnails/down/thumb/down.png
.png
主机漏洞报表_20230816090145/image/thumbnails/light/thumb/light.png
.png
主机漏洞报表_20230816090145/image/thumbnails/mark1/thumb/mark1.png
.png
主机漏洞报表_20230816090145/image/thumbnails/mark2/thumb/mark2.png
.png
主机漏洞报表_20230816090145/image/thumbnails/mark3/thumb/mark3.png
.png
主机漏洞报表_20230816090145/image/thumbnails/mark4/thumb/IntegratedOffice.exe
.exe windows x64

0b5552dccd9d0a834cea55c0c8fc05be

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

CreateWindowExW
MessageBoxW
MessageBoxA
SystemParametersInfoW
DestroyIcon
SetWindowLongPtrW
GetWindowLongPtrW
GetClientRect
InvalidateRect
ReleaseDC
GetDC
DrawTextW
GetDialogBaseUnits
EndDialog
DialogBoxIndirectParamW
MoveWindow
SendMessageW

comctl32

ord380

kernel32

GetStringTypeW
GetFileAttributesExW
HeapReAlloc
FlushFileBuffers
GetCurrentDirectoryW
IsValidCodePage
GetACP
GetModuleHandleW
MulDiv
GetLastError
SetDllDirectoryW
GetModuleFileNameW
GetProcAddress
GetCommandLineW
GetEnvironmentVariableW
GetOEMCP
ExpandEnvironmentStringsW
CreateDirectoryW
GetTempPathW
WaitForSingleObject
Sleep
GetExitCodeProcess
CreateProcessW
GetStartupInfoW
FreeLibrary
LoadLibraryExW
SetConsoleCtrlHandler
FindClose
FindFirstFileExW
CloseHandle
GetCurrentProcess
LocalFree
FormatMessageW
MultiByteToWideChar
WideCharToMultiByte
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetTimeZoneInformation
HeapSize
WriteConsoleW
SetEnvironmentVariableW
RtlUnwindEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
SetEndOfFile
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
EncodePointer
RaiseException
RtlPcToFileHeader
GetCommandLineA
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetFullPathNameW
RemoveDirectoryW
FindNextFileW
SetStdHandle
DeleteFileW
ReadFile
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleExW
HeapFree
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
GetFileSizeEx
HeapAlloc
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CompareStringW
LCMapStringW

advapi32

OpenProcessToken
GetTokenInformation
ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSidToStringSidW

gdi32

SelectObject
DeleteObject
CreateFontIndirectW

Sections

.text
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 493KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
chromecore.pyc
主机漏洞报表_20230816090145/image/thumbnails/mark4/thumb/mark4.png
.png
主机漏洞报表_20230816090145/image/thumbnails/mark5/thumb/mark5.png
.png
主机漏洞报表_20230816090145/image/thumbnails/open/thumb/open.png
.png
主机漏洞报表_20230816090145/image/thumbnails/rank1/thumb/rank1.png
.png
主机漏洞报表_20230816090145/image/thumbnails/rank2/thumb/rank2.png
.png
主机漏洞报表_20230816090145/image/thumbnails/rank3/thumb/rank3.png
.png
主机漏洞报表_20230816090145/image/thumbnails/rank4/thumb/rank4.png
.png
主机漏洞报表_20230816090145/image/thumbnails/rank5/thumb/curl.exe
.exe windows x64

ee9a6003e38c4807593881dba7c0e2c4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ws2_32

htonl
getaddrinfo
freeaddrinfo
accept
listen
recvfrom
sendto
__WSAFDIsSet
select
bind
WSAIoctl
closesocket
WSASetLastError
getpeername
getsockname
socket
ntohs
connect
getsockopt
htons
setsockopt
recv
WSAGetLastError
WSACleanup
WSAStartup
WSACloseEvent
WSACreateEvent
WSAEventSelect
WSAResetEvent
send
WSAWaitForMultipleEvents
WSAEnumNetworkEvents
ioctlsocket
inet_pton
gethostname

advapi32

CryptGetHashParam
CryptReleaseContext
CryptHashData
CryptCreateHash
CryptGenRandom
CryptAcquireContextA
CryptDestroyHash

crypt32

CryptDecodeObjectEx
PFXImportCertStore
CertFreeCertificateContext
CryptStringToBinaryA
CertEnumCertificatesInStore
CertCloseStore
CertFindCertificateInStore
CertCreateCertificateChainEngine
CertFindExtension
CertGetNameStringA
CertFreeCertificateChain
CryptQueryObject
CertOpenStore
CertFreeCertificateChainEngine
CertGetCertificateChain
CertAddCertificateContextToStore

api-ms-win-core-console-l2-1-0

GetConsoleScreenBufferInfo

api-ms-win-core-processenvironment-l1-1-0

GetStdHandle
GetEnvironmentVariableA

api-ms-win-core-file-l1-1-0

SetEndOfFile
GetFileTime
CreateFileA
SetFileTime
GetFileType
GetFileSizeEx
ReadFile

api-ms-win-core-string-l1-1-0

MultiByteToWideChar

api-ms-win-core-console-l1-1-0

GetConsoleMode
SetConsoleCtrlHandler
WriteConsoleW
SetConsoleMode

api-ms-win-core-kernel32-legacy-l1-1-2

Module32First
Module32Next

api-ms-win-core-toolhelp-l1-1-0

CreateToolhelp32Snapshot

api-ms-win-core-errorhandling-l1-1-0

GetLastError
SetLastError

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter
QueryPerformanceFrequency

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-processenvironment-l1-2-0

SearchPathA

api-ms-win-core-libraryloader-l1-2-0

GetProcAddress
GetModuleFileNameA
FreeLibrary
LoadLibraryExW
GetModuleHandleA

api-ms-win-core-synch-l1-2-0

Sleep

api-ms-win-core-sysinfo-l1-1-0

GetTickCount
GetSystemDirectoryA

api-ms-win-core-sysinfo-l1-2-0

VerSetConditionMask

api-ms-win-core-kernel32-legacy-l1-1-1

VerifyVersionInfoW

api-ms-win-core-localization-l1-2-0

FormatMessageW

api-ms-win-core-libraryloader-l1-2-1

LoadLibraryA

api-ms-win-core-synch-l1-1-0

SleepEx
EnterCriticalSection
DeleteCriticalSection
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
InitializeCriticalSectionEx

api-ms-win-core-kernel32-legacy-l1-1-0

MoveFileExA

api-ms-win-core-synch-l1-2-1

WaitForMultipleObjects

api-ms-win-core-namedpipe-l1-1-0

PeekNamedPipe

api-ms-win-crt-heap-l1-1-0

free
calloc
malloc
_set_new_mode
realloc

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
fflush
fwrite
fputs
_read
_lseeki64
_get_osfhandle
_close
fclose
fputc
__p__commode
_fileno
_setmode
__stdio_common_vsprintf
_open
fopen
_isatty
feof
fgets
puts
__stdio_common_vsscanf
fread
_set_fmode
getc
fseek
ferror
ftell
_write

api-ms-win-crt-time-l1-1-0

_time64
strftime
_gmtime64
_localtime64

api-ms-win-crt-convert-l1-1-0

strtol
strtod
strtoul
strtoll
atoi
wcstombs

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table
_initialize_narrow_environment
abort
_set_app_type
_register_thread_local_exe_atexit_callback
_beginthreadex
__sys_nerr
strerror
_get_initial_narrow_environment
_errno
_initterm
__sys_errlist
_register_onexit_function
_configure_narrow_argv
_initterm_e
exit
_exit
terminate
_crt_atexit
__p___argc
__p___argv
_c_exit
_cexit
_seh_filter_exe

api-ms-win-crt-string-l1-1-0

isupper
strspn
tolower
wcsncmp
isprint
strcspn
strncmp
_strdup
strncpy
strpbrk
strtok
strcmp

api-ms-win-crt-filesystem-l1-1-0

_stat64
_mkdir
_fstat64
_unlink
_access

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-multibyte-l1-1-0

_mbscmp
_mbsnbcpy
_mbspbrk
_mbschr
_mbsnbcmp

api-ms-win-crt-locale-l1-1-0

_configthreadlocale
setlocale

kernel32

RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetModuleHandleW
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
RtlLookupFunctionEntry
InitializeSListHead
RtlCaptureContext
IsDebuggerPresent

api-ms-win-core-rtlsupport-l1-1-0

RtlUnwindEx

api-ms-win-core-processthreads-l1-1-0

TlsSetValue
TlsAlloc
TlsFree
TlsGetValue

api-ms-win-crt-math-l1-1-0

__setusermatherr
_fdopen

api-ms-win-crt-conio-l1-1-0

_getch

Sections

.text
Size: 370KB - Virtual size: 369KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
主机漏洞报表_20230816090145/image/thumbnails/rank5/thumb/rank5.png
.png
主机漏洞报表_20230816090145/image/thumbnails/rank6/thumb/rank6.png
.png
主机漏洞报表_20230816090145/image/thumbnails/right/thumb/right.png
.png
主机漏洞报表_20230816090145/image/title-bg-2.png
.png
主机漏洞报表_20230816090145/image/title-bg-3.png
.png
主机漏洞报表_20230816090145/image/title-bg-4.png
.png
主机漏洞报表_20230816090145/js/common-detail.js
.js
主机漏洞报表_20230816090145/js/common.js
.js
主机漏洞报表_20230816090145/js/jquery-1.7.2.min.js
.js
主机漏洞报表_20230816090145/resouce/host/10.27.3.12.html
.html
主机漏洞报表_20230816090145/resouce/vlun/resouce/report.vbs
.vbs
主机漏洞报表_20230816090145/resouce/vlun/主机漏洞报表_20230815180145.html
.html
主机漏洞报表_20230816090145/主机漏洞报表_20230816090145.lnk
.lnk

Sharing

General

Malware Config

Signatures

Files

0b5552dccd9d0a834cea55c0c8fc05be

Headers

DLL Characteristics

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

gdi32

Sections

.text Size: 162KB - Virtual size: 162KB

.rdata Size: 75KB - Virtual size: 74KB

.data Size: 3KB - Virtual size: 64KB

.pdata Size: 8KB - Virtual size: 8KB

_RDATA Size: 512B - Virtual size: 348B

.rsrc Size: 493KB - Virtual size: 492KB

.reloc Size: 2KB - Virtual size: 1KB

ee9a6003e38c4807593881dba7c0e2c4

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

advapi32

crypt32

api-ms-win-core-console-l2-1-0

api-ms-win-core-processenvironment-l1-1-0

api-ms-win-core-file-l1-1-0

api-ms-win-core-string-l1-1-0

api-ms-win-core-console-l1-1-0

api-ms-win-core-kernel32-legacy-l1-1-2

api-ms-win-core-toolhelp-l1-1-0

api-ms-win-core-errorhandling-l1-1-0

api-ms-win-core-profile-l1-1-0

api-ms-win-core-handle-l1-1-0

api-ms-win-core-processenvironment-l1-2-0

api-ms-win-core-libraryloader-l1-2-0

api-ms-win-core-synch-l1-2-0

api-ms-win-core-sysinfo-l1-1-0

api-ms-win-core-sysinfo-l1-2-0

api-ms-win-core-kernel32-legacy-l1-1-1

api-ms-win-core-localization-l1-2-0

api-ms-win-core-libraryloader-l1-2-1

api-ms-win-core-synch-l1-1-0

api-ms-win-core-kernel32-legacy-l1-1-0

api-ms-win-core-synch-l1-2-1

api-ms-win-core-namedpipe-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-multibyte-l1-1-0

api-ms-win-crt-locale-l1-1-0

kernel32

api-ms-win-core-rtlsupport-l1-1-0

api-ms-win-core-processthreads-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-conio-l1-1-0

Sections

.text Size: 370KB - Virtual size: 369KB

.rdata Size: 130KB - Virtual size: 129KB

.data Size: 512B - Virtual size: 3KB

.pdata Size: 10KB - Virtual size: 10KB

_RDATA Size: 512B - Virtual size: 252B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 162KB - Virtual size: 162KB

.rdata
Size: 75KB - Virtual size: 74KB

.data
Size: 3KB - Virtual size: 64KB

.pdata
Size: 8KB - Virtual size: 8KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 493KB - Virtual size: 492KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 370KB - Virtual size: 369KB

.rdata
Size: 130KB - Virtual size: 129KB

.data
Size: 512B - Virtual size: 3KB

.pdata
Size: 10KB - Virtual size: 10KB

_RDATA
Size: 512B - Virtual size: 252B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB