Overview

overview

10

Static

static

10

example.bat

windows7-x64

1

example.bat

windows10-2004-x64

1

rainbow_sc...y).bat

windows7-x64

1

rainbow_sc...y).bat

windows10-2004-x64

1

F TO RESPE...KB.jar

windows7-x64

1

F TO RESPE...KB.jar

windows10-2004-x64

7

F TO RESPE...VU.bat

windows7-x64

1

F TO RESPE...VU.bat

windows10-2004-x64

1

F TO RESPE... ).exe

windows7-x64

1

F TO RESPE... ).exe

windows10-2004-x64

1

F TO RESPE...e).bat

windows7-x64

1

F TO RESPE...e).bat

windows10-2004-x64

1

F TO RESPE...oM.exe

windows7-x64

7

F TO RESPE...oM.exe

windows10-2004-x64

7

F TO RESPE...ka.jar

windows7-x64

1

F TO RESPE...ka.jar

windows10-2004-x64

7

F TO RESPE...al.jar

windows7-x64

1

F TO RESPE...al.jar

windows10-2004-x64

7

Matrix_Effect.bat

windows7-x64

1

Matrix_Effect.bat

windows10-2004-x64

1

F/reachgod.cmd

windows7-x64

1

F/reachgod.cmd

windows10-2004-x64

1

verash code.bat

windows7-x64

1

verash code.bat

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    000df7e0d48583208402ba9feffbe284

  • Size

    550KB

  • MD5

    000df7e0d48583208402ba9feffbe284

  • SHA1

    1459a664730e82b80ccd4b04ced08ca27cc38d3d

  • SHA256

    c9fae025316354d925615ef0019879f777817e8b01b09dd473470a093ab8b5f5

  • SHA512

    6be1511cfd1547cafac30d2a95d28c830d502f949ff0691323944d4fec5fd5b2be2777032e5aec6bbb1ce8d3c5ebc679b4951e20c7560f982a83234fd711aa53

  • SSDEEP

    12288:GsBGf5m4mcbZFpv5PhUwk4CHx+3GoVq207VGv2j:TMm1IHP6F7xAgVGuj

Score
10/10
upxadwind

Malware Config

Signatures

  • Adwind family
    adwind
  • Class file contains resources related to AdWind 2 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 000df7e0d48583208402ba9feffbe284
    .zip
  • F/HitArgentino BestTweaker By Imnahu and others.zip
    .zip
  • example.bat
  • hit argentino best tweaker by imnahu arg.txt
  • F/Macaco Client - view in capton channel .txt
  • F/Vupex bat .txt
  • F/fran strafe private.txt
  • F/hawel raimbow scanner .rar
    .rar
  • rainbow_scanner(coppy).bat
    .bat .vbs
  • screenshots.txt
  • F/jiiklom shop and aplications xposed .zip
    .zip
  • F TO RESPECT/REG V9 JIIKLOM.png
    .png
  • F TO RESPECT/best kb .jar/BestKB.jar
    .jar
  • F TO RESPECT/best kb .jar/jiiklom Best Kb.png
    .png
  • F TO RESPECT/fortnite fpsboost/fps fortnite original/11164KVU.bat
  • F TO RESPECT/fortnite fpsboost/fps fortnite original/Fortnite_Fps_Booster_V4 ( original ).exe
    .exe windows:4 windows x86 arch:x86

    77abcad8d2a58839860bba9dc40f29e1


    Headers

    Imports

    Sections

  • F TO RESPECT/fortnite fpsboost/jiiklom fps boost fortnite/FORTNITE FPS BOOST (jiiklom code).bat
  • F TO RESPECT/fortnite fpsboost/jiiklom fps boost fortnite/FORTNITE FPS BOOST by JiiKloM.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • F TO RESPECT/fortnite fpsboost/video .txt
  • F TO RESPECT/links used.txt
  • F TO RESPECT/misplace final .jar/Kotcka.jar
    .jar
  • F TO RESPECT/misplace final .jar/Misplace JiiKloM VFinal.jar
    .jar
  • F TO RESPECT/misplace final .jar/jiiklom misplace vfinal.png
    .png
  • F/matrix efect op kb reach detection.rar
    .rar
  • Matrix_Effect.bat
  • matrix efect op kb - reach detection .txt
  • F/reachgod.cmd
  • F/verash misplace.rar
    .rar
  • verash code.bat
  • verash misplace.txt
  • F/☨ info☨ .txt