软件安装管理器[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

软件安装管理器.zip
Size

594KB
MD5

d89caf72aac3e945486590e77e909fbd
SHA1

6c924a6a9b8f92c0a8ba1c30dfddedd445b877ce
SHA256

1735aa7c3d9b6bb5e2267e92a80694ffbca7032dea96d91fec4c25e0f665aac5
SHA512

d12c29e9363b309481fc09f4b1b8b5fddc356dfa78dd0db36df10808cef29d11b5d787d998de7249e3052d33fd811d663f136fe970cd2f43e353d65b1f7fd69b
SSDEEP

12288:r8NJ/HzDf3Zs0UeTTxQw3jHPQVEFAuSR6AdB6EWgUcLx/vbTYwBHaNpsqlKd57d+:r8zzj3Zsa/FPQVi1SB6jqzkwBH8XKTOn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/װ/Softprep.exe

Files

软件安装管理器.zip
.zip
װ/Softprep.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 132KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 25KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��֮Ͼ��
Size: 329KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
װ/Softprep.ini
װ/Sort/Media.ico
װ/Sort/Net.ico
װ/Sort/Office.ico
װ/Sort/Picture.ico
װ/Sort/Safe.ico
װ/Sort/Tool.ico
װ/˵.txt