8bd80b3e902dcc4f623ab1e56da88ca015c329d242eb776065ba24c905212c61 | Triage

Sharing

General

Target

8bd80b3e902dcc4f623ab1e56da88ca015c329d242eb776065ba24c905212c61
Size

3.7MB
MD5

7718a385fc753be0d872421c9a12e514
SHA1

6acfab4d80c10a9559cbeff6a4bbd21f6c12d2d4
SHA256

8bd80b3e902dcc4f623ab1e56da88ca015c329d242eb776065ba24c905212c61
SHA512

a1edb5b72d27f2b6b564001b0b90addbb07479cc98bba8e4bfa3c181a821008f8e80a170e2c63a73e1629bb9d87d8045e89d2678997a1c2acd1c0f7bb954dc1b
SSDEEP

98304:NAv/Tf84Vpz8xqPuxjdibiaISbUyAdSE4DhQ9q:Kpz0ttY3IByTE4y8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8bd80b3e902dcc4f623ab1e56da88ca015c329d242eb776065ba24c905212c61

Files

8bd80b3e902dcc4f623ab1e56da88ca015c329d242eb776065ba24c905212c61
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

HTTP��
QQ��
_AppEnd
_AppStart
_AppUnload
_ControlPanel
_GetPhoneVefCode
_GetTicket
_OnEvent
_OnGroup
_OnGuildPush
_OnPluginMessage
_OnPrivate
��_��
��ʼ��
ȡ�û�_��
ʱ��ʽ��_��_ȫ
�Ƿ��
ָ��

Sections

.nsp0
Size: - Virtual size: 9.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE