28ab89000e164cc265d9417748c8d61d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28ab89000e164cc265d9417748c8d61d
Size

4.0MB
MD5

28ab89000e164cc265d9417748c8d61d
SHA1

8136cd5a01aeff302fbe3d5b438dff861909d008
SHA256

92247c9381dd5dcdb322d0a677aeb9f8714215c657d885324da8e0a3646dc3a3
SHA512

eccd04fe94673f820462d53f6e568975dd22318ea718bc530eea16d6e1bead353ab81122ddc3bfec97b3d95f4667f6947b67606471f4f99d585d38b6a1ae8242
SSDEEP

98304:/E2xFpyTh1PbbdWyQRf0DxhBnDna41+PFAZx3AFZ:/E2xFoxb0InBW41JZa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/HA_AmondDVD2iPod2.2_LRH.exe

Files

28ab89000e164cc265d9417748c8d61d
.rar
HA_AmondDVD2iPod2.2_LRH.exe
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

S2C0
Size: - Virtual size: 192KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

S2C1
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.~s2c
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
新云软件.url
.url