7c132b982fb0bb1feb2b0e60f5c91e14 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c132b982fb0bb1feb2b0e60f5c91e14
Size

613KB
MD5

7c132b982fb0bb1feb2b0e60f5c91e14
SHA1

e5315f7c6974a3d6b04acb3f6ed3d78e920045b6
SHA256

2786db39a5ef344933be23cd9a7a81e52c3baf6aa494cdcecb3ff51b3a5fa536
SHA512

9e4832f579fd42ba66a3957cce9401cf638d3d026f952ca835ea3f877a6f96e0cfe060eb701dde7f1a93109ffe6f0a5146d63abc5f06f24dfa12b5019072406f
SSDEEP

12288:Prop8Uq+pYQnhcyLgHrJo6bppfPYu79H00xJ0dfOA9uh6+6i:ProGl4rCXHrJTptYoHLxJ0dfO6I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/LZWHDDZSetup.exe

Files

7c132b982fb0bb1feb2b0e60f5c91e14
.rar
LZWHDDZSetup.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
下载说明.htm
.html .js polyglot