71515b2722669937b87dca95fa326781 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71515b2722669937b87dca95fa326781
Size

141KB
MD5

71515b2722669937b87dca95fa326781
SHA1

02dea0758e6e5c9b874e1e4683848be0872d70a0
SHA256

3aa6cfaa2259f00b5e4c58e46fb74d289f96f527ad461b538a252b9025f8c892
SHA512

beee4409692a2004b31e764589c29fb0c483d90ba05edd361e21b995d3878705fb486bfb00f47469c5616e3a73762c9615d1a6ba408ad7b76414d79a9ae88a2a
SSDEEP

3072:GfDPzhrKp4ECA1B/lHD0j68Mn/tc9abcUVgZ0R/j5M:GTdKp4EJB/ljQ6nn1cdSfM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/mp3phonejingjian.exe

Files

71515b2722669937b87dca95fa326781
.rar
mp3phonejingjian.exe
.exe windows:4 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Sections

.text
Size: 102KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.love
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
新云软件.url
.url