E:\01-北京\交接0422\SP90\SP90-程序\PC端程序\SP90_PC\SP90\obj\x86\Debug\SP90.pdb
Static task
static1
Behavioral task
behavioral1
Sample
00c9b0b422bc6e226093d5c8c59c6b5349393bb6459bd53c64af78d067745a4c.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
00c9b0b422bc6e226093d5c8c59c6b5349393bb6459bd53c64af78d067745a4c.exe
Resource
win10v2004-20240508-en
General
-
Target
00c9b0b422bc6e226093d5c8c59c6b5349393bb6459bd53c64af78d067745a4c
-
Size
353KB
-
MD5
6b46682ee0fee89c82f1c1aafd11cf9f
-
SHA1
6a1966684a8e8189590499da1d3a042c4fc69d8d
-
SHA256
00c9b0b422bc6e226093d5c8c59c6b5349393bb6459bd53c64af78d067745a4c
-
SHA512
63c3ecdcda2e8d4e0c7d4225d929790287336b391503eae23fdaa411f485236252cfb4c493c2be49ece9ac7b8c00c872ef95ca6ecfb8e825b7d35e31b0c64f8e
-
SSDEEP
6144:XfmVQ9Is8vgmkmfcQAKZeFzo1RLg4yfffffffffffffffffffffffzpanmpppppX:PmVQCsEcL9FzHP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 00c9b0b422bc6e226093d5c8c59c6b5349393bb6459bd53c64af78d067745a4c
Files
-
00c9b0b422bc6e226093d5c8c59c6b5349393bb6459bd53c64af78d067745a4c.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 350KB - Virtual size: 350KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ