General

  • Target

    5ba8ccc41654f11caacccbb0aa869e95

  • Size

    2.2MB

  • MD5

    5ba8ccc41654f11caacccbb0aa869e95

  • SHA1

    034c47a383f6a617f9e79c6b2b56cc74004362d3

  • SHA256

    f44675f3ae2b4264699cc7a1ff787f4a2def68d7734777060fbc3d48b8b01483

  • SHA512

    7c00615a9cf0939539cd85594553b19a19055121c248ee22efc461a85a3426c48bd3ad3965503c0a5e65e952e1adb3f365ccce73d20ddb3042e5b75bf802dbe9

  • SSDEEP

    49152:RzU4Rd/MiofUZ49cefn7OA26OBcOPAl2ZqxRJVWHrOVbDznGdqCwM0z:VPJ949vfnb26hoY3+y1XGQCjs

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 5ba8ccc41654f11caacccbb0aa869e95
    .rar
  • KSJ.dll
  • Official.dll
  • Upgrade txt.exe
    .exe windows:4 windows x86 arch:x86

    65ae5cf17140aeaf91e3e9911da0ee3e


    Headers

    Imports

    Sections

  • confing.Ini
  • txt.exe
    .exe .vbs windows:4 windows x86 arch:x86 polyglot

    65ae5cf17140aeaf91e3e9911da0ee3e


    Headers

    Imports

    Sections

  • v.dll
  • 新云软件.url
    .url