Overview

overview

3

Static

static

3

SQL用户配置.exe

windows7-x64

1

SQL用户配置.exe

windows10-2004-x64

1

dangan.exe

windows7-x64

1

dangan.exe

windows10-2004-x64

1

dll/ADODCCHS.dll

windows7-x64

1

dll/ADODCCHS.dll

windows10-2004-x64

1

dll/CMCTLCHS.dll

windows7-x64

1

dll/CMCTLCHS.dll

windows10-2004-x64

1

dll/CMDLGCHS.dll

windows7-x64

1

dll/CMDLGCHS.dll

windows10-2004-x64

1

dll/COMCAT.dll

windows7-x64

1

dll/COMCAT.dll

windows10-2004-x64

1

dll/COMCTL32.dll

windows7-x64

1

dll/COMCTL32.dll

windows10-2004-x64

1

dll/FLEXWIZ.dll

windows7-x64

1

dll/FLEXWIZ.dll

windows10-2004-x64

1

dll/FLXGDCHS.dll

windows7-x64

1

dll/FLXGDCHS.dll

windows10-2004-x64

1

dll/GAPI32.dll

windows7-x64

3

dll/GAPI32.dll

windows10-2004-x64

3

dll/MSADODC.dll

windows7-x64

1

dll/MSADODC.dll

windows10-2004-x64

1

dll/MSBCODE9.dll

windows7-x64

1

dll/MSBCODE9.dll

windows10-2004-x64

1

dll/MSBIND.dll

windows7-x64

1

dll/MSBIND.dll

windows10-2004-x64

1

dll/MSCC2CHS.dll

windows7-x64

1

dll/MSCC2CHS.dll

windows10-2004-x64

1

dll/MSCH2CHS.dll

windows7-x64

1

dll/MSCH2CHS.dll

windows10-2004-x64

1

dll/MSCHRT20.dll

windows7-x64

1

dll/MSCHRT20.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    a36d151e07a2f8d9fac775cb8af21c47

  • Size

    3.3MB

  • MD5

    a36d151e07a2f8d9fac775cb8af21c47

  • SHA1

    5abbeeab2852b9784e7bfc739197a0ce0998ea25

  • SHA256

    649debcba4e5800637f2b3a41a30e5f03fda611c62ba79b7d50ec329c04f2cad

  • SHA512

    c117ad0952d7d4bb91d2f381545b6870817c889a9d10b4efc90be3f4f4ef608304874a8f034f8bb6e9efd089525a41fec5497233ef05b63ab9e43e004dcf648a

  • SSDEEP

    98304:ft01MeOWir3dmFicGixD9PEDJ/IjyV4nRrq1d1c:fbeODrtgLwQjw4nRrkg

Score
3/10

Malware Config

Signatures

  • Unsigned PE 29 IoCs

    Checks for missing Authenticode signature.

Files

  • a36d151e07a2f8d9fac775cb8af21c47
    .rar
  • SQL用户配置.exe
    .exe windows:4 windows x86 arch:x86

    a93cead65d6db0cc3817756651bb92d9


    Headers

    Imports

    Sections

  • dangan.exe
    .exe windows:4 windows x86 arch:x86

    7cc3d878ef613945453261ee091bc2c4


    Headers

    Imports

    Sections

  • dll/ADODCCHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/CMCTLCHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/CMDLGCHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/COMCAT.DLL
    .dll regsvr32 windows:4 windows x86 arch:x86

    5316dd1ba7417f578451f902c4b4f845


    Headers

    Imports

    Exports

    Sections

  • dll/COMCTL32.OCX
    .dll regsvr32 windows:4 windows x86 arch:x86

    c8cebbf034d8c6304701e5ec3fae70a4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/FLEXWIZ.OCX
    .dll regsvr32 windows:4 windows x86 arch:x86

    3e4d56775d4d2acf146219b71f8a62c3


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/FLXGDCHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/GAPI32.DLL
    .dll windows:4 windows x86 arch:x86

    624c84a04948cdb010eaf9695c0efffd


    Headers

    Imports

    Exports

    Sections

  • dll/MSADODC.OCX
    .dll regsvr32 windows:4 windows x86 arch:x86

    8e793d5ee63851225d4d05cc91524988


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/MSBCODE9.OCX
    .dll regsvr32 windows:4 windows x86 arch:x86

    864eec8ade8ed7332c4ddfa10f074a38


    Headers

    Imports

    Exports

    Sections

  • dll/MSBIND.DLL
    .dll regsvr32 windows:4 windows x86 arch:x86

    45ad39a267f7357c116e24d9e596a1c1


    Headers

    Imports

    Exports

    Sections

  • dll/MSCC2CHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/MSCH2CHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/MSCHRT20.OCX
    .dll regsvr32 windows:4 windows x86 arch:x86

    a0a3b80e18d8fb6ca27a1f8612e03304


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/MSCMCCHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/MSCOMCTL.OCX
    .dll regsvr32 windows:4 windows x86 arch:x86

    b22bd7d6f2b83c193c4c7e9c0a2de8b2


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/MSFLXGRD.OCX
    .dll regsvr32 windows:4 windows x86 arch:x86

    11eea53ea81b7d299e5a61db777d2725


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/MSHFGCHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/MSHFLXGD.OCX
    .dll regsvr32 windows:4 windows x86 arch:x86

    f85bbf593e8698965e8a666b0c4a72f0


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/MSSTDFMT.DLL
    .dll regsvr32 windows:4 windows x86 arch:x86

    813db3b6c9a1b45c2a363924917c26d9


    Headers

    Imports

    Exports

    Sections

  • dll/MSWINSCK.OCX
    .dll regsvr32 windows:4 windows x86 arch:x86

    cb0275eec9ac31b6d4d44320e576fadb


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/RCHTXCHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/RICHED32.DLL
    .dll windows:4 windows x86 arch:x86

    32c903521d208fd36af5670d0a38a2b9


    Headers

    Imports

    Sections

  • dll/RICHTX32.OCX
    .dll regsvr32 windows:4 windows x86 arch:x86

    f879ec87b93340bacfa917edf4e1aee5


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/STDFTCHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/VB6CHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/VB6STKIT.DLL
    .dll windows:4 windows x86 arch:x86

    04b9c2e7c9382d2e610aaad198ba3446


    Headers

    Imports

    Exports

    Sections

  • dll/VQQPlayer.ocx
    .dll regsvr32 windows:4 windows x86 arch:x86

    a37b0d77fdbb7d30004d9ba0c6e42cb3


    Headers

    Imports

    Exports

    Sections

  • dll/WINSKCHS.DLL
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • dll/asycfilt.dll
    .dll windows:5 windows x86 arch:x86

    5deee9ef803f3882a12b5c1690dcfb3e


    Headers

    Imports

    Exports

    Sections

  • dll/comdlg32.ocx
    .dll regsvr32 windows:4 windows x86 arch:x86

    988f29c1eb8054253091352741683c76


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/dao360.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    740d7cb11304862970f49454448a6e33


    Headers

    Imports

    Exports

    Sections

  • dll/mscomct2.ocx
    .dll regsvr32 windows:4 windows x86 arch:x86

    748b8691a0d45b447a059b7ae299a0a2


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dll/msvbvm60.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    52aa5ee856953e49635e554af5207319


    Headers

    Imports

    Exports

    Sections

  • dll/oleaut32.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    f2c566a4e1032b7e51e40a63fb1c5b7d


    Headers

    Imports

    Exports

    Sections

  • dll/olepro32.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    320e088ac1c8676d17073aabfe6a53ff


    Headers

    Imports

    Exports

    Sections

  • dll/新云软件.url
    .url
  • 安装程序.exe
    .exe windows:4 windows x86 arch:x86

    35fbe55d28368bafb6080c874631d3cd


    Headers

    Imports

    Sections

  • 建立SQL数据库.exe
    .exe windows:4 windows x86 arch:x86

    5799cbe7e164b600981626a6cd69d264


    Headers

    Imports

    Sections

  • 档案管理系统安装使用说明.doc
    .doc windows office2003