1c91dac7a2ecc8534e26887711b99e1f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c91dac7a2ecc8534e26887711b99e1f
Size

307KB
MD5

1c91dac7a2ecc8534e26887711b99e1f
SHA1

aa34ffc9affac263bcf7cfd8de7968da967e387b
SHA256

c95a909ca964d60e034e32cbf0acf3a21c9b940e2661bbc4e019a2b62b164a57
SHA512

2aba295a5df01d2dc1c078cba5cb45478b6c16f503f849b827918d2f931f0dc9eae5f1af9bce24d4c1a01ed7a1a22680c21a0b8b76af33636ae1bd1e771592a9
SSDEEP

6144:tpuTWNqltgXOTtLzZKDa7bjTqqOENerpEl0GL2Jz6lxGD57xsHx8V:tzIltgXOTJz3qq9Ne9EKGL1xGF78xC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/gwyl.exe

Files

1c91dac7a2ecc8534e26887711b99e1f
.rar
gwyl.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: - Virtual size: 992KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 308KB - Virtual size: 313KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
下载说明.htm
.html .js polyglot