Overview

overview

7

Static

static

7

梦幻古�...��.url

windows7-x64

1

梦幻古�...��.url

windows10-2004-x64

1

梦幻古�...ow.dll

windows7-x64

7

梦幻古�...ow.dll

windows10-2004-x64

7

梦幻古�....9.exe

windows7-x64

3

梦幻古�....9.exe

windows10-2004-x64

3

梦幻古�...��.url

windows7-x64

1

梦幻古�...��.url

windows10-2004-x64

1

梦幻古�...��.url

windows7-x64

1

梦幻古�...��.url

windows10-2004-x64

1

梦幻古�...��.htm

windows7-x64

1

梦幻古�...��.htm

windows10-2004-x64

1

梦幻古�...��.url

windows7-x64

1

梦幻古�...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    7fa3e1d2a7dd2685ef856275cabea9ca

  • Size

    996KB

  • MD5

    7fa3e1d2a7dd2685ef856275cabea9ca

  • SHA1

    9952daea24734b175d114cb94078f7028fd39fed

  • SHA256

    47ad4a8d82c3a884b77468d39c621cf9e072a9060471c368538f36582642586e

  • SHA512

    305d8e2599b03eaee7a7c9bb018683614f0e022f9a00c73ad3eaf39f7e51b44cafc7d166a9d672042cdb9d8d159bd2cda31b6369580ff522c17553ef2ef7de13

  • SSDEEP

    24576:HUFytks3iotCtPKXx20BxbBfo+aAUWXf20mNoB1fm:0Zs3vd22QHAUWO0mNoi

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 7fa3e1d2a7dd2685ef856275cabea9ca
    .rar
  • 梦幻古龙泡泡/92wg在线购买外挂卡.url
  • 梦幻古龙泡泡/92wg说明.txt
  • 梦幻古龙泡泡/Window.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • 梦幻古龙泡泡/Window.ini
  • 梦幻古龙泡泡/glpp3.9.exe
    .exe windows:4 windows x86 arch:x86

    9b89b73a2bd2f3c9338530bbd4a212f0


    Headers

    Imports

    Sections

  • 梦幻古龙泡泡/使用帮助.url
    .url
  • 梦幻古龙泡泡/冲值.url
    .url
  • 梦幻古龙泡泡/就爱外挂网.htm
    .html
  • 梦幻古龙泡泡/就爱外挂网交流论坛 欢迎您的参与.url
    .url