7b9c10172d4af41f04c665cddf18cd9d04a58cddd507db1522c4d3cc694ea1c1

Sharing

Copy URL

Twitter E-mail

General

Target

7b9c10172d4af41f04c665cddf18cd9d04a58cddd507db1522c4d3cc694ea1c1
Size

93KB
MD5

c09f5851037e08c7cfda3f3f35b7378d
SHA1

424caf1b9926ca759c24d57089bbc95944f8e548
SHA256

7b9c10172d4af41f04c665cddf18cd9d04a58cddd507db1522c4d3cc694ea1c1
SHA512

e0bf462ac492830396091cf00bff0055403d6835c1ef4acef5ef1f35ef5ceb65ab22085c3e70c0a09a865d00cc2cbb976acb19d5b05f9215a7eb0c38299d5e8a
SSDEEP

1536:3s7BL5KA9yfzeKxj8Q/ws7BLvKA9yrzeKa9w7mb8Q/nM+YjVXn:cNINx5vNWBMxn2

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/dirb-master/MSFoper.exe
unpack001/dirb-master/MSF子域名扫描.exe

Files

7b9c10172d4af41f04c665cddf18cd9d04a58cddd507db1522c4d3cc694ea1c1
.zip
dirb-master/MSFoper.exe
.exe windows x86

ae0a5112fe1176f4e5f6e1bc95e4c209

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

FreeLibrary
lstrcatA
GetModuleFileNameA
ExitProcess
LoadLibraryA
GetProcAddress
lstrlenA

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
dirb-master/MSF子域名扫描.exe
.exe windows x86

ae0a5112fe1176f4e5f6e1bc95e4c209

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

FreeLibrary
lstrcatA
GetModuleFileNameA
ExitProcess
LoadLibraryA
GetProcAddress
lstrlenA

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
dirb-master/MSF扫描工具.zip
.zip
dirb-master/README.en.md
dirb-master/README.md
dirb-master/config.dll
dirb-master/dict.txt
dirb-master/subname.txt
dirb-master/zd.txt
dirb-master/域名.txt
dirb-master/测试图.PNG
.png

Sharing

General

Malware Config

Signatures

Files

ae0a5112fe1176f4e5f6e1bc95e4c209

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

.text Size: 1024B - Virtual size: 548B

.rdata Size: 512B - Virtual size: 404B

.data Size: 30KB - Virtual size: 30KB

.rsrc Size: 2KB - Virtual size: 2KB

ae0a5112fe1176f4e5f6e1bc95e4c209

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

.text Size: 1024B - Virtual size: 548B

.rdata Size: 512B - Virtual size: 404B

.data Size: 35KB - Virtual size: 35KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 1024B - Virtual size: 548B

.rdata
Size: 512B - Virtual size: 404B

.data
Size: 30KB - Virtual size: 30KB

.rsrc
Size: 2KB - Virtual size: 2KB

.text
Size: 1024B - Virtual size: 548B

.rdata
Size: 512B - Virtual size: 404B

.data
Size: 35KB - Virtual size: 35KB

.rsrc
Size: 2KB - Virtual size: 2KB