b666ac15efbb265c2a4478cc7b39c67d19959e9e1b2b00b80802c84970c48272 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b666ac15efbb265c2a4478cc7b39c67d19959e9e1b2b00b80802c84970c48272
Size

169KB
MD5

994c3aa6e1483b847e429ccf66bd7b5c
SHA1

3f4a54f8881a443d3675a3ae24cb667027b437cd
SHA256

b666ac15efbb265c2a4478cc7b39c67d19959e9e1b2b00b80802c84970c48272
SHA512

379d351014732e6542610ce9d99d9010133a035ea0e2827cfc8ebccfd290d49e28162897ed2cd928bc46f4c59db3ba3872ae95846c4a17ae1106fa695f8f66cc
SSDEEP

3072:dhCxFXJlP0LdOzpYmi4iih188JoZO8hi1ksb4ifdL3KVDQ4lJ+9rSEp0iEoLnKX:dieoz+m6iLoZHhNsNp6BVyrSEp0wLw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/WinAPPLock_v1.03/WinAPPLock_v1.03.exe

Files

b666ac15efbb265c2a4478cc7b39c67d19959e9e1b2b00b80802c84970c48272
.zip
WinAPPLock_v1.03/WinAPPLock_v1.03.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

WinAPPLock.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WinAPPLock_v1.03/关注微信 - 更多福利.png