Overview

overview

7

Static

static

7

客户端/ceshi.dll

windows7-x64

7

客户端/ceshi.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    629a3469e0f2395af7a28167d0dd22f2ea961991fb2f0b8cc238256b399d2d75

  • Size

    6.9MB

  • MD5

    93a15a9d1697d86501ee8104d427f762

  • SHA1

    a3f63c47071f53ecb1a5dd94e4813c76eebc892c

  • SHA256

    629a3469e0f2395af7a28167d0dd22f2ea961991fb2f0b8cc238256b399d2d75

  • SHA512

    67be08b513d09259c14520b28cc70a646822f8fc4a8bed5bccf0ecde7da2709d4e95c1111bc406ce3a7eb58b894482c4f849ab47c8fba87f1ba11ff8277c220b

  • SSDEEP

    196608:qRvUiuJa94G6cMPe1iRzdGJ0157Pbhk9e6:qRvUAxnMPe1iRoJa5DdV6

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 629a3469e0f2395af7a28167d0dd22f2ea961991fb2f0b8cc238256b399d2d75
    .zip
  • 客户端/ceshi.dll
    .dll windows:5 windows x86

    3052cc9217e0683875077c2e51ac9192


    Headers

    Imports

    Exports

    Sections