5c19a01ccf407c7eb886d7afd879b1ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c19a01ccf407c7eb886d7afd879b1ac
Size

475KB
MD5

5c19a01ccf407c7eb886d7afd879b1ac
SHA1

b5d0644787178b8d40683414449f6a736e9d11d4
SHA256

d0e50c218cdbedadd28151e89ed426f878cff8a637c74b747d863fd88a3bc44b
SHA512

83ada30a7e6c27de4532befdb0336dcc0b4f25c2aaebe139635b19b28b98f117416195a99e1063ec0f645b03d6fea98fed1a3a5acd1c4847d2a9344bd49783fa
SSDEEP

12288:1BT2rAWv/6mTRFOagXv/xEz2+SSGjLvtFbYx4n85SYQi12:1ByfKmWB3xEVSrH84n8EYQp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/liliMine.exe

Files

5c19a01ccf407c7eb886d7afd879b1ac
.rar
liliMine.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 649KB - Virtual size: 649KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 64B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 524KB - Virtual size: 524KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
下载说明.htm
.html .js polyglot