24f033db8bbc00b6b07f5674b7ffc02a

General

Target

24f033db8bbc00b6b07f5674b7ffc02a
Size

9.3MB
MD5

24f033db8bbc00b6b07f5674b7ffc02a
SHA1

fc79f2fdd30aae5b6d3bfb98141adc7b077691a4
SHA256

3938045fa65015baad5037cc27d3fd7a49c21d8c027478a4d5def28314296250
SHA512

8ed513154b5e4dbb6b1ea75c02be5bfde3492d6d9444c221920c9acd4531df21b363a73f9217730eb57c9d56e471ce87c378d9fa1bae9ae4f9ec59d2abce77d6
SSDEEP

196608:b1jwmf9R/YtRo3ges3pLECalC4SacozFbrMrtT5Qbhnu1cfu6vqm0pKV3:aeRgUwzpLECalC+coRbrotTuhu1cWTKd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/xptomac.exe

Files

24f033db8bbc00b6b07f5674b7ffc02a
.rar
xptomac.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 315KB - Virtual size: 832KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8.7MB - Virtual size: 8.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 341KB - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

Size: 315KB - Virtual size: 832KB

Size: 8KB - Virtual size: 20KB

Size: - Virtual size: 108KB

Size: 10KB - Virtual size: 12KB

Size: - Virtual size: 4KB

Size: 512B - Virtual size: 4KB

Size: - Virtual size: 52KB

.rsrc Size: 8.7MB - Virtual size: 8.7MB

.data Size: 341KB - Virtual size: 344KB

.adata Size: - Virtual size: 4KB

.rsrc
Size: 8.7MB - Virtual size: 8.7MB

.data
Size: 341KB - Virtual size: 344KB

.adata
Size: - Virtual size: 4KB