Overview

overview

7

Static

static

7

钢琴演�...EL.dll

windows7-x64

7

钢琴演�...EL.dll

windows10-2004-x64

7

钢琴演�...te.exe

windows7-x64

7

钢琴演�...te.exe

windows10-2004-x64

7

钢琴演�...��.chm

windows7-x64

1

钢琴演�...��.chm

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    6c0f7a835d75f5a281d9b9381b307754

  • Size

    825KB

  • MD5

    6c0f7a835d75f5a281d9b9381b307754

  • SHA1

    8cec38efeb2e35ae03c6cb57f3a59719c46858e1

  • SHA256

    30b5928564325bca449328f01764712b110fe9449ae44b34b9e28666574fe995

  • SHA512

    a7a6e8d7267a5c828934891e57bd3b818d3212e7fee0929c41765f41c3a490ef50675a29e75c15c6c64e5ce5ebdb17e838e22714c8572bae5be4c6bdef7d8b42

  • SSDEEP

    24576:4CCJtiXsCQT4/fq7DpLE+wSdROJEMgOEvW6gEw/AyFHv2:n+twfqXpE+JQJXE+UaB2

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 6c0f7a835d75f5a281d9b9381b307754
    .rar
  • 钢琴演奏家/SkinH_EL.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • 钢琴演奏家/Update.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 钢琴演奏家/User.ini
  • 钢琴演奏家/Whatsnew.txt
  • 钢琴演奏家/ico/Disk.ico
  • 钢琴演奏家/ico/gzp.ico
  • 钢琴演奏家/ico/ico.ico
  • 钢琴演奏家/ico/zp.ico
  • 钢琴演奏家/skins/aero.she
  • 钢琴演奏家/帮助.chm
    .chm