d9cff10fdaa4188539b41ba0d1662c09ceb26071e202483da4e218c358ffbd27

Sharing

Copy URL

Twitter E-mail

General

Target

d9cff10fdaa4188539b41ba0d1662c09ceb26071e202483da4e218c358ffbd27
Size

8.3MB
MD5

f3d0f9742055492ee4ab46548228f58d
SHA1

8447dfc9eda4fdc1be45e65e0aad149d67821602
SHA256

d9cff10fdaa4188539b41ba0d1662c09ceb26071e202483da4e218c358ffbd27
SHA512

5afb55511b95ed34cdce0969d9855e4e57d2980d49fe2c00bb1b26cd095c08e2691bef7f94f25de22e1ca1ddd24715274fb4016485a48cf6bfb9f43d866c97f1
SSDEEP

196608:lIESmmq3wsvW6Nja/YhZmeP7+coPFQiPsTEZKzOdF6r7T:oqAS5amrSFQ4ZKKr+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/terraria_adv_6.1/terraria_adv_6.1#123456789.EXE

Files

d9cff10fdaa4188539b41ba0d1662c09ceb26071e202483da4e218c358ffbd27
.zip
terraria_adv_6.1/!!!!_______高级版使用方法.txt
terraria_adv_6.1/01.使用说明.jpg
terraria_adv_6.1/02.正确示例.jpg
terraria_adv_6.1/Home键在哪里/台式键盘的HOME.jpg
.jpg
terraria_adv_6.1/Home键在哪里/虚拟键盘.bat
terraria_adv_6.1/Home键在哪里/虚拟键盘_home.png
.png
terraria_adv_6.1/terraria_adv_6.1#123456789.EXE
.exe windows:6 windows x86

4f9c08852371f997515f0cda2b687b23

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathAddBackslashA
PathStripPathA
PathRemoveFileSpecA

kernel32

DecodePointer
GetModuleFileNameA
FindResourceA
GetModuleHandleA
SizeofResource
LoadResource
GetTempPathA
CreateDirectoryA
CreateFileW
DeleteFileA
CreateFileA
WriteFile
CloseHandle
CreateProcessA
WaitForSingleObject
RemoveDirectoryA
GetConsoleMode
GetConsoleOutputCP
GetTempFileNameA
GetProcAddress
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetModuleHandleW
GetCurrentProcess
TerminateProcess
RtlUnwind
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
WriteConsoleW
LoadLibraryExW
RaiseException
GetStdHandle
GetModuleFileNameW
ExitProcess
GetModuleHandleExW
HeapFree
HeapAlloc
GetFileType
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetStdHandle
GetStringTypeW
CompareStringW
LCMapStringW
GetProcessHeap
SetFilePointerEx
HeapSize
HeapReAlloc
FlushFileBuffers

user32

MessageBoxA

advapi32

ConvertStringSecurityDescriptorToSecurityDescriptorA

Sections

.text
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8.1MB - Virtual size: 8.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
terraria_adv_6.1/作者微信.png
.png
terraria_adv_6.1/修改器_小技巧/B站视频教程_全配方制作怎么用_包裹编辑改物品怎么用.url
terraria_adv_6.1/修改器_小技巧/包裹编辑.txt
terraria_adv_6.1/修改器_小技巧/物品ID获取办法.txt
terraria_adv_6.1/修改器_小技巧/物品制作.txt
terraria_adv_6.1/修改器闪退解决.txt
terraria_adv_6.1/无法识别人物解决.txt
terraria_adv_6.1/用于重命名的字符在哪里/24小时自助购买的_在订单里面.png
.png
terraria_adv_6.1/用于重命名的字符在哪里/通过加作者微信购买_作者发给你的.png
.png

Sharing

General

Malware Config

Signatures

Files

4f9c08852371f997515f0cda2b687b23

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

advapi32

Sections

.text Size: 66KB - Virtual size: 65KB

.rdata Size: 27KB - Virtual size: 27KB

.data Size: 2KB - Virtual size: 4KB

.rsrc Size: 8.1MB - Virtual size: 8.1MB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 66KB - Virtual size: 65KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 8.1MB - Virtual size: 8.1MB

.reloc
Size: 4KB - Virtual size: 3KB