Overview

overview

7

Static

static

7

QQper/QQ�....0.exe

windows7-x64

7

QQper/QQ�....0.exe

windows10-2004-x64

7

QQper/QQ�...��.doc

windows7-x64

4

QQper/QQ�...��.doc

windows10-2004-x64

1

QQper/QQ�...Io.dll

windows7-x64

7

QQper/QQ�...Io.dll

windows10-2004-x64

7

QQper/QQ�...Io.sys

windows7-x64

1

QQper/QQ�...Io.sys

windows10-2004-x64

1

QQper/QQ�...ll.dll

windows7-x64

1

QQper/QQ�...ll.dll

windows10-2004-x64

1

QQper/QQ�...ib.vbs

windows7-x64

1

QQper/QQ�...ib.vbs

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    2a99dec8ea9426f33e45fc298498d87b

  • Size

    1.8MB

  • MD5

    2a99dec8ea9426f33e45fc298498d87b

  • SHA1

    df635f49fc2f0b9ec0db3ea72b0a19654e0967b5

  • SHA256

    18a21925737956f78196c36d8829c9ee566cd88c1c73ae309cfade5fbb99d39f

  • SHA512

    09c1f24c7f2e5d9bc2009e8b7893059074227f835bb7f2ca2fc490ac685efaf1031ba2a2ece69619852f10448276317390c2f101bbc3fa9e45e66118acd75660

  • SSDEEP

    49152:5oJdO2YtrmVhQW2HYhP6qp9lJnfdC72kzGE/:OJc5r4hQ34hyE9TVCBKG

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • 2a99dec8ea9426f33e45fc298498d87b
    .rar
  • QQper/QQ宠物辅助工具v2.0(单宠物使用)/01.bmp
  • QQper/QQ宠物辅助工具v2.0(单宠物使用)/06.bmp
  • QQper/QQ宠物辅助工具v2.0(单宠物使用)/QQ宠物辅助工具v2.0.EXE
    .exe windows:4 windows x86 arch:x86

    9c8decf3582072f6edfc385a689f44f4


    Headers

    Imports

    Sections

  • QQper/QQ宠物辅助工具v2.0(单宠物使用)/QQ宠物辅助工具帮助.doc
    .doc windows office2003
  • QQper/QQ宠物辅助工具v2.0(单宠物使用)/WINIO.VXD
  • QQper/QQ宠物辅助工具v2.0(单宠物使用)/WinIo.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • QQper/QQ宠物辅助工具v2.0(单宠物使用)/WinIo.sys
    .sys windows:4 windows x86 arch:x86

    172b54da983eaa27abf08d8ed525b840


    Headers

    Imports

    Sections

  • QQper/QQ宠物辅助工具v2.0(单宠物使用)/cfgdll.dll
    .dll windows:4 windows x86 arch:x86

    369c5423d50c36075a954f6dfade94b1


    Headers

    Imports

    Sections

  • QQper/QQ宠物辅助工具v2.0(单宠物使用)/mymacro.ini
  • QQper/QQ宠物辅助工具v2.0(单宠物使用)/stdlib.vbs
    .vbs