30c31f589f97898a4b8b8cede8b936f45c8b8350fcccbb046160c430d25389cd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30c31f589f97898a4b8b8cede8b936f45c8b8350fcccbb046160c430d25389cd
Size

155KB
MD5

0e31ad56be457d1d6cc488f2cadfdffe
SHA1

c4b700c8cf290c0c919c32b93e681abd217a11eb
SHA256

30c31f589f97898a4b8b8cede8b936f45c8b8350fcccbb046160c430d25389cd
SHA512

3e874d854bcd1f41b896288f4e28d8cb7202d58fafb21994439aa6ccb9ee80bead114099e9672ca60186c0eda3dacd2811a6943bc83075e9824cc44d484d4244
SSDEEP

3072:uJ5rSs/bm1W1fHZ51KlzMrOQ9T5C+0Q5W38hxGFl/w+EwXVck3t:u3rSs/2W1j1ozMiQ9T5C+F5uAxd+DVc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30c31f589f97898a4b8b8cede8b936f45c8b8350fcccbb046160c430d25389cd

Files

30c31f589f97898a4b8b8cede8b936f45c8b8350fcccbb046160c430d25389cd
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\1_SVN\2_Net项目\超级AI客服_3.9.5.80\SuperAICusService\obj\Debug\SuperAICusService.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ