5e0278201d496e909a84182650fcb53e246507b3d1b0ba9b0e7ba666fad28ef1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e0278201d496e909a84182650fcb53e246507b3d1b0ba9b0e7ba666fad28ef1
Size

5.6MB
MD5

ff08ba05262d498f85f2fa44f9053ec0
SHA1

c418cafbd7a9c4d88143fe395d881a717d382532
SHA256

5e0278201d496e909a84182650fcb53e246507b3d1b0ba9b0e7ba666fad28ef1
SHA512

c367a4097742b11e53103a659ce7a2137e0c5707a9bdc10dd4dfc020ffd508b29ca4f05ea9386fa28f968e8ca6c1814d3e8674a05127463c6b0e3c86f4289877
SSDEEP

98304:xD3avmZwseK7yvyEnDuPu6CTOQEIEpeFIIv:xDnt9u6g4Z2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e0278201d496e909a84182650fcb53e246507b3d1b0ba9b0e7ba666fad28ef1

Files

5e0278201d496e909a84182650fcb53e246507b3d1b0ba9b0e7ba666fad28ef1
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\工作空间\微信版本\微信淘客宝内部版MAX版\WeChatNET\obj\x86\Debug\WeChat.NET.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ