Overview

overview

3

Static

static

3

蓝鸟网�...er.exe

windows7-x64

1

蓝鸟网�...er.exe

windows10-2004-x64

1

蓝鸟网�...01.htm

windows7-x64

1

蓝鸟网�...01.htm

windows10-2004-x64

1

蓝鸟网�...02.htm

windows7-x64

1

蓝鸟网�...02.htm

windows10-2004-x64

1

蓝鸟网�...03.htm

windows7-x64

1

蓝鸟网�...03.htm

windows10-2004-x64

1

蓝鸟网�...04.htm

windows7-x64

1

蓝鸟网�...04.htm

windows10-2004-x64

1

蓝鸟网�...ex.htm

windows7-x64

1

蓝鸟网�...ex.htm

windows10-2004-x64

1

蓝鸟网�...��.url

windows7-x64

1

蓝鸟网�...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    8780d8777f1aeecdc4b4c876ea3487b0

  • Size

    1.1MB

  • MD5

    8780d8777f1aeecdc4b4c876ea3487b0

  • SHA1

    ad119ab366ab6339447efe41dcf8d7e7d7a4b88d

  • SHA256

    62d7e652e8fcbdfb45de1debb5977676c3cf81b49b8b28d0ea98d7c819404f81

  • SHA512

    22f8d632df0d4d922b9156f3fd66cc2b683cc340ada61a7daa7427dbd6c163c49af59942c1ab645a4c55684a1e2ee092ddb8d7d5fc95a491527c2a20d03aadc3

  • SSDEEP

    24576:aM89lCRSuDqqJg0AEWXcc6KqysqobzQN+BsskVmyTigg:aMcM5S0eXcHKklgN+Vkgt

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8780d8777f1aeecdc4b4c876ea3487b0
    .rar
  • 蓝鸟网搜/LnWiGather.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 蓝鸟网搜/data/empty_db.mdb
  • 蓝鸟网搜/data/main.mdb
  • 蓝鸟网搜/data/task_mb.tsk_
  • 蓝鸟网搜/help/h001.jpg
    .jpg
  • 蓝鸟网搜/help/h002.jpg
    .jpg
  • 蓝鸟网搜/help/h003.jpg
    .jpg
  • 蓝鸟网搜/help/h004.jpg
    .jpg
  • 蓝鸟网搜/help/h005.jpg
    .jpg
  • 蓝鸟网搜/help/h006.jpg
    .jpg
  • 蓝鸟网搜/help/h007.jpg
    .jpg
  • 蓝鸟网搜/help/h008.jpg
    .jpg
  • 蓝鸟网搜/help/h009.jpg
    .jpg
  • 蓝鸟网搜/help/h010.jpg
    .jpg
  • 蓝鸟网搜/help/h011.jpg
    .jpg
  • 蓝鸟网搜/help/h012.jpg
    .jpg
  • 蓝鸟网搜/help/h013.jpg
    .jpg
  • 蓝鸟网搜/help/h014.jpg
    .jpg
  • 蓝鸟网搜/help/help001.htm
    .html
  • 蓝鸟网搜/help/help002.htm
    .html
  • 蓝鸟网搜/help/help003.htm
    .html
  • 蓝鸟网搜/help/help004.htm
    .html
  • 蓝鸟网搜/help/index.htm
    .html
  • 蓝鸟网搜/新云软件.url
    .url