375654d9fa3e300291c50fd18acf2121

Sharing

Copy URL Twitter E-mail

General

Target

375654d9fa3e300291c50fd18acf2121
Size

2.4MB
MD5

375654d9fa3e300291c50fd18acf2121
SHA1

eaf3b3e12100d9c4f6a1f2ac14b7fbc3ce2200a5
SHA256

5c5ddd43ef9113a4f45386207642ac270a9220a8c56ba7aa8d1af5e408d135e2
SHA512

db5797950ef2f55d15d67f380d505e8b46f2284ed04723ab07361378ca79752d8bb8e3592f4351dccfe17858f4b9c17ba3d25b1205e165882848eadbb6066533
SSDEEP

49152:f8iAW1P10qNWpUm2ihPCpHys9wmvWCNo5metImQ5/T2gjkdWUUdl:f8iuqNuUOCpF+CNDejQ57twzy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/huigeziVersion2.0/H_Client.exe

Files

375654d9fa3e300291c50fd18acf2121
.rar
huigeziVersion2.0/H_Client.exe
.exe windows:4 windows x86 arch:x86

a7333743ef063a68d1d860bbdf1c328e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
VirtualAlloc

Sections

.adata
Size: 827KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 11KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 512B - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
huigeziVersion2.0/免责声明.txt
huigeziVersion2.0/协议.doc
.doc windows office2003
huigeziVersion2.0/版本说明.txt

Sharing

General

Malware Config

Signatures

Files

a7333743ef063a68d1d860bbdf1c328e

Headers

File Characteristics

Imports

kernel32

Sections

.adata Size: 827KB - Virtual size: 1.8MB

.adata Size: 11KB - Virtual size: 28KB

.adata Size: - Virtual size: 24KB

.adata Size: 6KB - Virtual size: 20KB

.adata Size: 512B - Virtual size: 112KB

.rsrc Size: 1.0MB - Virtual size: 2.2MB

.adata Size: 24KB - Virtual size: 28KB

.adata
Size: 827KB - Virtual size: 1.8MB

.adata
Size: 11KB - Virtual size: 28KB

.adata
Size: - Virtual size: 24KB

.adata
Size: 6KB - Virtual size: 20KB

.adata
Size: 512B - Virtual size: 112KB

.rsrc
Size: 1.0MB - Virtual size: 2.2MB

.adata
Size: 24KB - Virtual size: 28KB