1966669623475ef2b1803b314a01485f3bbf406ffa5d6e5c941b7b143f4da171 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1966669623475ef2b1803b314a01485f3bbf406ffa5d6e5c941b7b143f4da171
Size

8KB
MD5

484758249395496efd55db0237ec771f
SHA1

cc3d790bd4fc80a0afe4bd3994f0ab524dc4d264
SHA256

1966669623475ef2b1803b314a01485f3bbf406ffa5d6e5c941b7b143f4da171
SHA512

09bfa0dba2235bbd77472137bde125b50efe6670dc04aabce1e4a8e31dc6eeaa993126c2af01084b68507ab5e1d9e83ae9d572fc7e08e0a0b900fb9f386493fd
SSDEEP

96:SEKiwZifAtColdvq/GiIkhdBvC4Pp26qDk8vNWjeGOrzNt:SE8EfGCQSNIk3Bvtk6r8FWFY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1966669623475ef2b1803b314a01485f3bbf406ffa5d6e5c941b7b143f4da171

Files

1966669623475ef2b1803b314a01485f3bbf406ffa5d6e5c941b7b143f4da171
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Visual C# 2010\全書的程式\10\10-1-9\10-1-9\obj\Debug\10-1-9.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ