TIS_RTSS_Client[.]exe | Triage

Sharing

General

Target

TIS_RTSS_Client.exe
Size

344KB
MD5

8a60a252e7f0d4d56dc1819a0f9b3886
SHA1

de4d3b10e4d4d8276e82b52ded13dde097499a23
SHA256

eb53710669238052dcb3788ded0d3c155e6022240f9c569881329cb1e67a0c12
SHA512

04447ce4763083504a3276902c27fdee8f7282c80096a9b031266111a8645bd4ac7e25486d1c524661a7f9b2ee34e656caa77910f36a8f1d51c8313d918cd085
SSDEEP

6144:rA6wKZYG1/+zbLrORzyDtc96YxGrmJn3uLq/+zJLrORzyDtcbm:tnazb2Rzy29XfuLjzJ2Rzy2b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
TIS_RTSS_Client.exe

Files

TIS_RTSS_Client.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\TIS\電子帳務版\TIS_RTSS\TIS_RTSS_Client\TIS_RTSS_Client\obj\Debug\TIS_RTSS_Client.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 260KB - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ