20b9493ad3544e3b3f6e767a8ec73e063b10587afbc1e436a620937d9aeacb5e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20b9493ad3544e3b3f6e767a8ec73e063b10587afbc1e436a620937d9aeacb5e
Size

1.2MB
MD5

0a92939e343cf6acf572d1c7b014348d
SHA1

1b356c78f25c67ec13ee976aea93c5db74af7552
SHA256

20b9493ad3544e3b3f6e767a8ec73e063b10587afbc1e436a620937d9aeacb5e
SHA512

bb105430c1b71b910ff13b84295f493e4052e54a2bc793e92d6567ae652f290ca0436712210ba27c612465d73045b2223cd8bd37baeddd3bec524bc538558f2a
SSDEEP

24576:sY17JRtIV1A8/SzvQztwfqV1A8sSRaTLFnKbomDKAufCL:s+9RtIV1IzvUwyV1qPW2Au

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20b9493ad3544e3b3f6e767a8ec73e063b10587afbc1e436a620937d9aeacb5e

Files

20b9493ad3544e3b3f6e767a8ec73e063b10587afbc1e436a620937d9aeacb5e
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\办公\BanBanTong(Framework 4.0环境)\InformationBan\InformationBan\obj\x86\Release\BanBanTong.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ