General

  • Target

    ffcda4099924cc544e11d109f2709530

  • Size

    2.8MB

  • MD5

    ffcda4099924cc544e11d109f2709530

  • SHA1

    471a6b9f2f8526770d8653c4f534bcf6cceda0e3

  • SHA256

    2c90fe0c48d2293468f35c076659d52b233552e3f6f58d985e012e2e19aa99e0

  • SHA512

    a02c45a4131e7a6b1d35f9342439bfcd650e957f438c8265b224774853c3e9e82811843e07b9abc40c6c0c24e8d06a8e8a6ba40e9ebda61f4abeecdc05c92e67

  • SSDEEP

    49152:zuvQDMxal/Vv8ksx+3X/gtHWK7VF86hPyOTrMhXwyQTJ8ESkWP7AVW+:p4aXvlsIn/Qf7FPyWYhniV3

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • ffcda4099924cc544e11d109f2709530
    .rar
  • FireQQ堂外挂/Fire QQ堂4.2外挂/Fire QQ堂4.2外挂.exe
    .exe windows:4 windows x86 arch:x86

    ae0a5112fe1176f4e5f6e1bc95e4c209


    Headers

    Imports

    Sections

  • FireQQ堂外挂/Fire QQ堂4.2外挂/★使用说明☆.txt
  • FireQQ堂外挂/Fire QQ堂4.2外挂/修复公告!.txt
  • FireQQ堂外挂/Fire QQ堂4.2外挂/脚本/uservar.ini
  • FireQQ堂外挂/Fire QQ堂4.2外挂/脚本/永冬之颠险挂机脚本.ini
  • FireQQ堂外挂/Fire QQ堂4.2外挂/脚本/高仿技术穿泡脚本.ini
  • FireQQ堂外挂/修复公告!.txt
  • QQ堂[全能外挂].exe
    .exe windows:5 windows x86 arch:x86

    483f0c4259a9148c34961abbda6146c1


    Headers

    Imports

    Sections