General

  • Target

    Downloads.zip

  • Size

    20.6MB

  • MD5

    740cf839bad9df13360e6df2714fcb7c

  • SHA1

    d9e33fac2fb18b9aa3c4eed83e640be0da454c8a

  • SHA256

    0ee170eb92a1063c45512e55aa2c4c7e40e58e1cdc77ce13b5fe56163b871531

  • SHA512

    7346a5d52d9e872fa32d3a3f58303ac7c84aab7648544429a39daca9f836d7254488ac8a357e6e3a3346325eb25b876387b362e56ae427de447f87373e020a99

  • SSDEEP

    393216:JQ8VRqtoxGeTwM7hEdUPDgY4PoIEYaVQwiHlyoej+JsFePJsF5:JQ8VVwmhEdoDN4Poka+wIAT+JaePJa5

Score
7/10

Malware Config

Signatures

  • ASPack v2.12-2.42 1 IoCs

    Detects executables packed with ASPack v2.12-2.42

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

Files

  • Downloads.zip
    .zip
  • 1111111111111111111111.exe
    .exe windows:5 windows x86

    0db8876464e8e995f3ae002d75c7bbeb


    Headers

    Imports

    Sections

  • 9VIcoCiitn.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Microsoft Windows.com
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Code Sign

    Headers

    Imports

    Sections

  • New.exe
    .exe windows:5 windows x86

    870b8e75c7190e202e9c6c81dff1040c


    Headers

    Imports

    Sections

  • SBLlgcMqPg.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • hh.chm
    .chm
  • nY4Ke1JkQH.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • qnr.dll
    .dll windows:6 windows x86


    Headers

    Exports

    Sections

  • ˫װ.exe
    .exe windows:6 windows x64

    ac865fcff68a82396f1f8f985d0c0476


    Code Sign

    Headers

    Imports

    Sections

  • ٷѰװ.exe
    .exe windows:6 windows x64

    ac865fcff68a82396f1f8f985d0c0476


    Code Sign

    Headers

    Imports

    Sections