19514b98cfa2c970c89c07b41a360d2d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19514b98cfa2c970c89c07b41a360d2d
Size

214KB
MD5

19514b98cfa2c970c89c07b41a360d2d
SHA1

ae9168e25b2087664ce624abb0ac504c88d7b59a
SHA256

4f8affc9e532823ce05eb4d18b6b687fde8807d4ef6e4dbd71af710b414db0f7
SHA512

f72a63feba12b98a182d1a7f19bd16dd8c5f5b570a7d3a000ea339dc747f81ae9909ca6439dd1a7f249d99fa85de8fee211f5202d6b7fb89ac3dc857f7d79893
SSDEEP

6144:kuh1mLbjwGJKSjTnfeKyFDUey37fTJuou4Z7f:Z0wMKS/f0A7gouEf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/hkdown3/hkdown3/HkDown(ǽA).exe

Files

19514b98cfa2c970c89c07b41a360d2d
.zip
hkdown3/hkdown3/77169.orgʹð˵.txt
hkdown3/hkdown3/77169.org˵.htm
.html
hkdown3/hkdown3/HkDown(ǽA).exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

nsp0
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nsp1
Size: 220KB - Virtual size: 225KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
hkdown3/hkdown3/ĺڿͬ.url