1500079b230bf958ff2dd860e2285596 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1500079b230bf958ff2dd860e2285596
Size

272KB
MD5

1500079b230bf958ff2dd860e2285596
SHA1

6e3ba3bbb9899494439743a40c334ec98d1b1ef8
SHA256

08f2feb83d1df8967a3bbc449781c0e0c29b7b05fe545a887ac3288cc2d1e7e4
SHA512

1979d62b0d4735626a0f37fe1a3cec561f8d3b5889768a3e0a99cbb9681a614491e8c57dbd4d2e7ed9b6aa1c1294c2e3ac254446d8d046525bf71da10a540713
SSDEEP

6144:DZjhyPZgLUdUC9KXx9BOupGDi4CH/QR3h3A/aY05M/:FsPcth9BO9Di4CK3h3kal5M/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ldscgj/©ϴ.exe

Files

1500079b230bf958ff2dd860e2285596
.zip
ldscgj/##ע##.txt
ldscgj/77169.orgʹð˵.txt
ldscgj/77169.org˵.htm
.html
ldscgj/©ϴ.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 441KB - Virtual size: 440KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ldscgj/ĺڿͬ˽ѧѵ.url
ldscgj/ĺڿͬ.url
ldscgj/¿ƼIDC˾.url
ldscgj/¿Ƽȫά.url