区位国标机内码转换器[.]exe

General

Target

区位国标机内码转换器.exe
Size

160KB
MD5

90d4db2b7656a2e60140a49fd84b5dce
SHA1

36fd59dbe7f7f0c35db7d77a922941375e60efb4
SHA256

b5feb76b432dc7de5fc39dca108d5a2aa9367d5245950b23f67db484687616c8
SHA512

32c284189ea2802dfffffd29f61b33f1553489fc0e2be43b3532a3821d989dc26bfb85d02d09ea5bff5cbb5e193a54f13858dbba007f36af4632a0fa755c818b
SSDEEP

1536:gF/lmJ1BwfxTWjCWQtES0oJhli/IsDF0J4nomO:gF/lwOf0otESnJhlw5k4no5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
区位国标机内码转换器.exe

Files

区位国标机内码转换器.exe
.exe windows:4 windows x86

1d2128627f555b01b001132463a4a87c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetVersion
ExitProcess
DebugBreak
GetStdHandle
WriteFile
InterlockedDecrement
OutputDebugStringA
GetProcAddress
LoadLibraryA
InterlockedIncrement
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
HeapFree
VirtualFree
RtlUnwind
MultiByteToWideChar
IsBadWritePtr
IsBadReadPtr
HeapValidate
GetLastError
SetConsoleCtrlHandler
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
GetStringTypeA
GetStringTypeW
ReadFile
FlushFileBuffers
SetFilePointer
LCMapStringA
LCMapStringW
CloseHandle
SetStdHandle

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d2128627f555b01b001132463a4a87c

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 132KB - Virtual size: 131KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 11KB

.idata Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 132KB - Virtual size: 131KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 11KB

.idata
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB