Overview

overview

3

Static

static

3

fonttxt241...11.dll

windows7-x64

1

fonttxt241...11.dll

windows10-2004-x64

1

fonttxt241...vp.dll

windows7-x64

1

fonttxt241...vp.dll

windows10-2004-x64

1

fonttxt241...ok.dll

windows7-x64

1

fonttxt241...ok.dll

windows10-2004-x64

1

fonttxt241...xt.exe

windows7-x64

1

fonttxt241...xt.exe

windows10-2004-x64

1

fonttxt241...QQ.dll

windows7-x64

1

fonttxt241...QQ.dll

windows10-2004-x64

1

fonttxt241...��.url

windows7-x64

1

fonttxt241...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    6502250ba079b3b862ab053e68c6f379

  • Size

    818KB

  • MD5

    6502250ba079b3b862ab053e68c6f379

  • SHA1

    5667dda2f016a14949d6a9643c3da427ad8d614f

  • SHA256

    2903691f5c9a94d95988633be0c8866fca4062b2deb084ab6f80e5165c7e4e59

  • SHA512

    7fd05cfc2b87845a13c185bb89360c6e930a53ecf2acec6b11455762043b223a8ef3754434c3b55a3d9f940a4cab001a2da22604795df35434f5cf338f7dc137

  • SSDEEP

    24576:8a96tfReJhDm3XIPK7AgyaboxEV22FU/LNSDdy1:8dfRYgV9EU2uFDq

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • 6502250ba079b3b862ab053e68c6f379
    .rar
  • fonttxt2411/dll/About11.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • fonttxt2411/dll/Advp.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • fonttxt2411/dll/mhook.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • fonttxt2411/fonttext.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • fonttxt2411/help/fonttxt.mht
    .eml

    • http://otot.w2.icgaya.com/drawtxt/drawtxt.htm

  • attachment-2
    .gif
  • email-html-1.txt
    .html
  • fonttxt2411/support/Fonttxt.ini
  • fonttxt2411/support/FonttxtReadme.mht
    .eml

    • http://otot.w2.icgaya.com/

    • http://hi.baidu.com/drawtxt/blog/item/77f718458954b03c869473b0.html

  • attachment-2
    .gif
  • email-html-1.txt
    .html
  • fonttxt2411/support/QQ.dll
  • fonttxt2411/support/pen.txt
  • fonttxt2411/新云软件.url
    .url