Overview

overview

8

Static

static

3

360.cmd

windows7-x64

4

360.cmd

windows10-2004-x64

4

360SE.vbs

windows7-x64

3

360SE.vbs

windows10-2004-x64

3

361.cmd

windows7-x64

1

361.cmd

windows10-2004-x64

1

36OSE.vbs

windows7-x64

6

36OSE.vbs

windows10-2004-x64

7

36O安全�... 3.lnk

windows7-x64

3

36O安全�... 3.lnk

windows10-2004-x64

3

36O安全�...�3.lnk

windows7-x64

3

36O安全�...�3.lnk

windows10-2004-x64

3

Install_7xdown.vbs

windows7-x64

8

Install_7xdown.vbs

windows10-2004-x64

8

Internet Exploror.lnk

windows7-x64

3

Internet Exploror.lnk

windows10-2004-x64

3

copy.cmd

windows7-x64

8

copy.cmd

windows10-2004-x64

8

cpa.cmd

windows7-x64

7

cpa.cmd

windows10-2004-x64

1

is.cmd

windows7-x64

1

is.cmd

windows10-2004-x64

1

msn.exe

windows7-x64

7

msn.exe

windows10-2004-x64

7

runonce.cmd

windows7-x64

8

runonce.cmd

windows10-2004-x64

8

tool.cmd

windows7-x64

7

tool.cmd

windows10-2004-x64

7

winare.vbs

windows7-x64

3

winare.vbs

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    4f8f772f0b2bd5c59732b213b63cfd36

  • Size

    335KB

  • MD5

    4f8f772f0b2bd5c59732b213b63cfd36

  • SHA1

    d93aa79d42a32d15c59385cab58afdf35b64d229

  • SHA256

    22be704f1d3a90f02db3f827fb1411b4ed6396c57d1940703d7f60fd412aa6c0

  • SHA512

    5b008fb68bb05270cc5dcbde99cff46119ca09593ad17aeabb8e57614b0a50df4204426b9b9c2918e70ae00df7e07e1c807d28db7baea5903b98afd2bb785e28

  • SSDEEP

    6144:mN84OYWMcAylDfRqriEC0zvmukhMDJzLw6iwjfU9kNre12:aHOJxl/0z+uoqzBTQGteQ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4f8f772f0b2bd5c59732b213b63cfd36
    .rar
  • 360.cmd
  • 360SE.vbs
    .vbs
  • 361.cmd
  • 36OSE.vbs
    .vbs
  • 36O安全刘览器 3.lnk
    .lnk
  • 36O安全刘览器3.lnk
    .lnk
  • Install_7xdown.vbs
    .vbs
  • Internet Exploror.lnk
    .lnk
  • copy.cmd
  • cpa.cmd
  • is.cmd
  • msn.exe
    .exe windows:4 windows x86 arch:x86

    a6d1f237a38b6e7d3a48b606fa0d7939


    Headers

    Imports

    Sections

  • runonce.cmd
  • tool.cmd
  • winare.vbs
    .vbs