1b42728b12648b85f87ee6253a2cb7fa6804c4175db2bb40bc84752b27b94e21 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b42728b12648b85f87ee6253a2cb7fa6804c4175db2bb40bc84752b27b94e21
Size

153KB
MD5

5d6a34130e32da55a771d32479f453e3
SHA1

87708d94a5869862f42630bba8f4e726aaca1a62
SHA256

1b42728b12648b85f87ee6253a2cb7fa6804c4175db2bb40bc84752b27b94e21
SHA512

30588e87d82c1a8c5f1b560226d5a4759ab81b1ee9eac702a6b9806ef0cb03ed7521a1527bc46744fc89df0fef520d340950bd5e82c194d7f1b371b0dd98074a
SSDEEP

1536:5j2+LT16ckzG/rsYb+Q/kuWGzw8o7rR3LsUnIDjl4xRwtN+Z8wuJEmXAx:sQoEgcYrJliBLbUt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b42728b12648b85f87ee6253a2cb7fa6804c4175db2bb40bc84752b27b94e21

Files

1b42728b12648b85f87ee6253a2cb7fa6804c4175db2bb40bc84752b27b94e21
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

E:\公司资料\solid产品\读写器开发包资料\E系列\C#\兼容32通道模块\SReaderWPF\SReaderWPF\obj\Debug\SReaderWPF.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ