d9bd54818e287feca7c2a36b3a02fbe0N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d9bd54818e287feca7c2a36b3a02fbe0N.exe
Size

1.3MB
MD5

d9bd54818e287feca7c2a36b3a02fbe0
SHA1

13212276cdff868d2c7d018c3856c19e8d6a9f14
SHA256

fb495b003acbd330e590d07b377d84ba7e35b033463a0e820c0235a668e286f6
SHA512

e6e7c9fe5357912aa9c02985c66c6e1330d1eb70a7a45da5c8a65f3ba00f45b2814489cf447d6d5007136870e009e8e8735b7c393ba6672d5df764457e2095d9
SSDEEP

24576:JBIPRfsrJhZudzb7hSIWuJ+DuOS4bSOR7wGGHeiIEPZydL+0:05fs17udzb7hSFuguOtbSs7BiIVF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d9bd54818e287feca7c2a36b3a02fbe0N.exe

Files

d9bd54818e287feca7c2a36b3a02fbe0N.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\KXH资料\我的上位机\研发中心\01.故障信息实时监控系统\SVN分类\a1_SourceCode\V1.6.6-源程序-修改注册码(只用CPUID注册) - 添加飞思卡尔下载\XH.WinFormApplication\XH.WinFormApplication\obj\x86\D

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ