66d2a6a0af14e1888993720419909a42

Sharing

Copy URL

Twitter E-mail

General

Target

66d2a6a0af14e1888993720419909a42
Size

1.1MB
MD5

66d2a6a0af14e1888993720419909a42
SHA1

46a0e9c0caf744e3f9b78eaa32ecfa01a83e3e4e
SHA256

688b268046ab2d73a5539b9fd0168231244b1a2a012a33efa9599ff1d919d722
SHA512

e288d10ab934504c54c1264e6caf0f71c4035e58c2cdf87dbfa0b26d73c81f84932fe533b3a905cde93ad70d6b073ae007e03586b69262565eff17ac0d72ddd8
SSDEEP

24576:EPcF+GBV+b5KAeedPN1bgP8kZ8tKn9bEtC4jEE3ngHunLghg5SPkILyXEeBWXWi:ElGBoIepNpzkD9Ith7zncS54k1X5WGi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/IconXP/iconxp.exe

Files

66d2a6a0af14e1888993720419909a42
.rar
IconXP/BUTTONS.png
.png
IconXP/SAMPLES/Arrows.ico
IconXP/SAMPLES/Candle.ico
IconXP/SAMPLES/Caravel.ico
IconXP/SAMPLES/Clock.ico
IconXP/SAMPLES/EXAMPLE.ICO
IconXP/SAMPLES/JPG-GIF.ICO
IconXP/SAMPLES/Off.ico
IconXP/SAMPLES/Rocket.cur
IconXP/config.ini
IconXP/data/blend.dat
IconXP/data/brushes.shp
IconXP/data/circles.shp
IconXP/help.chm
.chm
IconXP/iconxp.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 514KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 9KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 9KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IconXP/安装必看.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

Size: 514KB - Virtual size: 1.4MB

Size: 9KB - Virtual size: 28KB

Size: 512B - Virtual size: 8KB

Size: 2KB - Virtual size: 12KB

Size: 4KB - Virtual size: 4KB

Size: 512B - Virtual size: 4KB

Size: 4KB - Virtual size: 4KB

Size: 9KB - Virtual size: 76KB

.rsrc Size: 53KB - Virtual size: 204KB

.data Size: 184KB - Virtual size: 184KB

.adata Size: - Virtual size: 4KB

.rsrc
Size: 53KB - Virtual size: 204KB

.data
Size: 184KB - Virtual size: 184KB

.adata
Size: - Virtual size: 4KB