8d6126b7491654ffd689cf6731875e1b8e807e0553b6651b49d906aa34f0856e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d6126b7491654ffd689cf6731875e1b8e807e0553b6651b49d906aa34f0856e
Size

970KB
MD5

ca6a8162f29b8b948f2ef2aed813958e
SHA1

fecbf34e84fcb345399ccc540e1820e00d931e40
SHA256

8d6126b7491654ffd689cf6731875e1b8e807e0553b6651b49d906aa34f0856e
SHA512

e45c639162cfef1973c01f1ee16afc18c7d771acc89855679f814ad742aa5709373af07a20c8cb9ea5af16f3b1ab0aa4b7fae13ffa4655cb92a5d69e64d92524
SSDEEP

24576:KQm4DcN9R8W8hhiJEAZLdKszTIevm94vC3Ga4AC85cRcMt3O07:LwH8ojdhweu94ja/aRcU3V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Icecream Apps Patch_2.2/Patch.exe

Files

8d6126b7491654ffd689cf6731875e1b8e807e0553b6651b49d906aa34f0856e
.zip
Icecream Apps Patch_2.2/!关注微信 - 更多福利.png
.png
Icecream Apps Patch_2.2/!果核剥壳 - 全网更新最快.url
.url
Icecream Apps Patch_2.2/Patch.exe
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 876KB - Virtual size: 876KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Icecream Apps Patch_2.2/补丁使用方法.txt