1b7f9fccac441a6ceb4f53949a68f8d8c4d08207562324aedcc7960d3d952ff9

Sharing

Copy URL Twitter E-mail

General

Target

1b7f9fccac441a6ceb4f53949a68f8d8c4d08207562324aedcc7960d3d952ff9
Size

255KB
MD5

1cbb54099041da468c66506a9bf8f953
SHA1

8ad9e3632fac7f6a4f8834801cdddd977375de2b
SHA256

1b7f9fccac441a6ceb4f53949a68f8d8c4d08207562324aedcc7960d3d952ff9
SHA512

051242a5677bd296064d9c5490fadba684ae4bdae3c3a237202ef940c06a5aee5d55fecc6d5a3dd1d66e61ef39da0eea1a36a77c8df0298218c8d77089687b40
SSDEEP

6144:7vWDvfRsJz0Yq8z1GjmDXZjFb9eIVY2KH3btiSBV+UdvrEFp7hKb:+RsJLqmG2MmY2ML5BjvrEH70

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b7f9fccac441a6ceb4f53949a68f8d8c4d08207562324aedcc7960d3d952ff9

Files

1b7f9fccac441a6ceb4f53949a68f8d8c4d08207562324aedcc7960d3d952ff9
.dll windows:6 windows x86 arch:x86

bf7be88cf65cbde68e9b13116fcc82ae

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\F0-SVN\基础算法\相机标定\PC标定WEB端\SLF控件端(附调试工具) - G7H11(调整特征点阈值)\Release\slf.pdb

Imports

vcruntime140

__std_type_info_destroy_list
__telemetry_main_return_trigger
__telemetry_main_invoke_trigger
memcpy
_except_handler4_common
memset

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsscanf
ftell
fseek
fread
fopen
fclose

api-ms-win-crt-math-l1-1-0

_CIatan2
_libm_sse2_cos_precise
_libm_sse2_pow_precise
_libm_sse2_sin_precise
_libm_sse2_sqrt_precise
_libm_sse2_tan_precise
_libm_sse2_atan_precise
_libm_sse2_acos_precise

api-ms-win-crt-heap-l1-1-0

_aligned_malloc
free
malloc
_aligned_free

api-ms-win-crt-runtime-l1-1-0

_cexit
_initterm_e
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_seh_filter_dll
_initterm
_crt_atexit

kernel32

SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
UnhandledExceptionFilter

Exports

Exports

HIKSLF_Process
HIKSLF_WebProcess
SLF_Get_Cur_Version

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf7be88cf65cbde68e9b13116fcc82ae

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

kernel32

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 76KB

.rdata Size: 89KB - Virtual size: 89KB

.data Size: 8KB - Virtual size: 9KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 76KB - Virtual size: 76KB

.rdata
Size: 89KB - Virtual size: 89KB

.data
Size: 8KB - Virtual size: 9KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB