67f1dcaf8df4925e8e4d00f5d2aac1897368293e56f3c906e800f943e8d00e80 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

67f1dcaf8df4925e8e4d00f5d2aac1897368293e56f3c906e800f943e8d00e80
Size

113KB
MD5

2990356bcb7afc6d05a800e2d6521aca
SHA1

e0b440cf507732b92cc3a53557fb54bb58170a6b
SHA256

67f1dcaf8df4925e8e4d00f5d2aac1897368293e56f3c906e800f943e8d00e80
SHA512

122b4b4fd98c3132ae3f2edc399aa0e71c33e6d87333daad57faf013c58ff405adcd4609f4d7ef12b65d31559cd224e45517dc0acda0d35b61779c7107b5f0a3
SSDEEP

1536:aVepMBXHNB3Jq1V2u9FXSXNoGOtvmAa/QPswM6veCdJbqSyp6HphUTJ++++++e:aVepMBgBFXSwvml/QPswM6veCnbfyQ1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67f1dcaf8df4925e8e4d00f5d2aac1897368293e56f3c906e800f943e8d00e80

Files

67f1dcaf8df4925e8e4d00f5d2aac1897368293e56f3c906e800f943e8d00e80
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\项目备份\公司项目\GitLocalRepository\抄表项目\ReadMeterUpdate_TCP_20220921\ReadMeterUpdate\obj\x86\Debug\ReadMeterUpdate.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ