General

  • Target

    0965922a3f02dab90e180c5083478872

  • Size

    8.8MB

  • MD5

    0965922a3f02dab90e180c5083478872

  • SHA1

    d055547764372a09c3b9e0da133a14de51c449ac

  • SHA256

    609ae59821f1d7d8c71d3d928639a53202cd02604e723bf8f87ca2b45c16631c

  • SHA512

    84dda0ff49be90238a43d77e90bac3a95cd5990a4d0c413e5336c2e09e43399856a688247f470b9acc1208e2c7660bc8839a845cf9db173de1ca46dc96d6fe4c

  • SSDEEP

    196608:GGN4i/NKoGuUJc8d/87LLjJux2OKzYFaMVhbY3yVT64sNp5z:D4i/EPlJZdaTOKzcaMnkCV+4ifz

Score
7/10

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • 0965922a3f02dab90e180c5083478872
    .rar .url polyglot
  • TianLongBaBuPingGuoDengLuQiZi3.10/游迅网.url
    .url
  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/Game.ini
  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/GameServer.ini
  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/ZCB_API.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    006abc9ad0c8798a7fc7eb24375d5fcd


    Headers

    Imports

    Exports

    Sections

  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/gamedll.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/pojie.dll
    .dll windows:4 windows x86 arch:x86

    ad5750d1c3c3546f30a553990f49f6a8


    Headers

    Imports

    Exports

    Sections

  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/使用方法.png
    .png
  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/天龙如意购买.url
    .url
  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/点开破解器,在打开苹果批量登录点破解,点登陆就可以了.txt
  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/用户信息.ini
  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/破解器.exe
    .exe windows:4 windows x86 arch:x86

    6ea1bc9650d8199d9247edd5f84ecc35


    Headers

    Imports

    Sections

  • TianLongBaBuPingGuoDengLuQiZi3.10/苹果批量登陆器3.10/苹果批量登陆器.exe
    .exe windows:5 windows x86 arch:x86

    efc08f68a56dd8d06c95c1f105f846ed


    Headers

    Imports

    Exports

    Sections

  • TianLongBaBuPingGuoDengLuQiZi3.10/说明.txt