14b6f65db0c555f96cfe9cdcadeee10f

General

Target

14b6f65db0c555f96cfe9cdcadeee10f
Size

5.3MB
MD5

14b6f65db0c555f96cfe9cdcadeee10f
SHA1

4d97bc8bab2cf41e89489e48e88d0eabe078ad7d
SHA256

b8fc74db4bad0fb701a73e0b1c4b72256f582038fe7aa0955cf4d43c1ebc0d79
SHA512

e48a7b0b2cc65fa3f2e5bf6615cda6730e0605f8b1147c2c11abd2fe6bc5e8777ffa08a76665f35e5ee4c9403f7aa61923edcf9778cf4bb2b69da6e2f40fdf90
SSDEEP

98304:XCHtqI6cqrfgUvrDJpE1oXUQkK3QSUdQluS5m5Va6ZvjdwzbyzEk85GbDNxLNwgK:LdxrYUve8UcQXdm5m5hr+485gDNxS

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/HA_Kingdia2AppleTV1.06_LRH.exe
unpack001/keygen.exe

Files

14b6f65db0c555f96cfe9cdcadeee10f
.rar
HA_Kingdia2AppleTV1.06_LRH.exe
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

S2C0
Size: - Virtual size: 192KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

S2C1
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.~s2c
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
keygen.exe
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

60lkjet.
Size: - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

05ee3bch
Size: 132KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

S2C0 Size: - Virtual size: 192KB

S2C1 Size: 18KB - Virtual size: 20KB

.~s2c Size: 14KB - Virtual size: 16KB

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 12KB

.rdata Size: - Virtual size: 4KB

.data Size: - Virtual size: 44KB

.rsrc Size: 1KB - Virtual size: 88KB

60lkjet. Size: - Virtual size: 60KB

05ee3bch Size: 132KB - Virtual size: 136KB

S2C0
Size: - Virtual size: 192KB

S2C1
Size: 18KB - Virtual size: 20KB

.~s2c
Size: 14KB - Virtual size: 16KB

.text
Size: - Virtual size: 12KB

.rdata
Size: - Virtual size: 4KB

.data
Size: - Virtual size: 44KB

.rsrc
Size: 1KB - Virtual size: 88KB

60lkjet.
Size: - Virtual size: 60KB

05ee3bch
Size: 132KB - Virtual size: 136KB