55d7a75d98867c7200afd6f36ba28ca1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55d7a75d98867c7200afd6f36ba28ca1
Size

1.4MB
MD5

55d7a75d98867c7200afd6f36ba28ca1
SHA1

093627469a4ba91c9775aefcb8ad1f7cc0d50988
SHA256

fd7c2748e0c1ecc3b9affe8f10a90a3b42a0f0249926b93d0020c319b20dbad6
SHA512

5bf80ebd2b10ec386626d258f2ee0d55f72aaa2847bd39e45517607292af560fc582803b71a7431ba5108746a8297bae496c35c2ff32c27f54c2013e8627d1dc
SSDEEP

24576:SmSnHq+3WbjGRJsPEJnrDYIWvN4VX3H1HPEMl282tVJE3HD1kooMNIclpTliqk:Sm8Hq+3manssBgIWvNmXX5cMc8GJuHDC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/yyhd_setup.exe

Files

55d7a75d98867c7200afd6f36ba28ca1
.rar
yyhd_setup.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
安装说明.url
.url