Overview

overview

9

Static

static

6

[Dev] ¿á...¾.url

windows7_x64

1

[Dev] ¿á...¾.url

windows10_x64

[Dev] ¿á...QA.exe

windows7_x64

8

[Dev] ¿á...QA.exe

windows10_x64

8

[Dev] ¿á...32.dll

windows7_x64

1

[Dev] ¿á...32.dll

windows10_x64

1

[Dev] ¿á...b1.dll

windows7_x64

3

[Dev] ¿á...b1.dll

windows10_x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    __Q Air [_____].zip

  • Size

    5.4MB

  • MD5

    1d9d4d633e35986a838c48f4330f02b4

  • SHA1

    426c9fd36d41c69e80d31d8d783710e6dad4f8ef

  • SHA256

    341a30be185f9984fc4fb3328b8846f97499259f35a6d98abe32532b2c2516af

  • SHA512

    fa67cbf2a48dc7706e268fb840a0151ac1dc96d6bfebca077d767ee3d083e79b8f822996497d3e14a70f9a2cca1070c44bac0df8b5ade9d8ad026737bb511909

Score
6/10

Malware Config

Signatures

  • JavaScript code in executable 1 IoCs

Files

  • __Q Air [_____].zip
    .zip
  • [Dev] ¿áQ Air [Õýʽ°æ]/¹Ù·½ÍøÕ¾.url
    .url
  • [Dev] ¿áQ Air [Õýʽ°æ]/¿áQ Air/CQA.exe
    .exe windows x86
  • [Dev] ¿áQ Air [Õýʽ°æ]/¿áQ Air/bin/libeay32.dll
    .dll windows x86
  • [Dev] ¿áQ Air [Õýʽ°æ]/¿áQ Air/bin/zlib1.dll
    .dll windows x86
  • [Dev] ¿áQ Air [Õýʽ°æ]/¿áQ Air/conf/CQP.cfg