General

  • Target

    8b1ff33d2daf95de17436f88ce9b13ba

  • Size

    1.5MB

  • MD5

    8b1ff33d2daf95de17436f88ce9b13ba

  • SHA1

    e6afa57698d56487bfee171b62a70a113d5d3c47

  • SHA256

    21a03658486b940d77d0fca56f51ffeb391332b4a44dd32cc2876c7bf5e111a7

  • SHA512

    2a1990af212ae484d5017fd8506f67b0f6947b4cb1b17fe685f59008657e208a8fb744440a7fcd79030e2e2a69897b01d6052f3e87b4015b91ccbf623cc552c2

  • SSDEEP

    49152:M1Iab1RW6034kIIiU8dsrbb+lVfzqrdxuzabT0Jy:ij/Q4kIj7doCjzqpYGMy

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 12 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs

Files

  • 8b1ff33d2daf95de17436f88ce9b13ba
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/MakeDll.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/StartMenu.dll
    .dll windows:4 windows x86 arch:x86

    a648aeaa164b592c1e8892a10400b5ae


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    1e2884056e655f2b7bc5a904e352fc80


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    d83f71e61ee459ee63ca3e829966a9dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsRandom.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • $PLUGINSDIR/registry.dll
    .dll windows:4 windows x86 arch:x86

    cd53277eaa7bbb8fb5b2b678274dcb4e


    Headers

    Imports

    Exports

    Sections

  • $SYSDIR/game.ico
  • $SYSDIR/taobao.ico
  • $_54_/$_52_
    .exe windows:4 windows x86 arch:x86

    bb85e70bb9ca123a192fb362d332c9e0


    Code Sign

    Headers

    Imports

    Sections

  • $_54_/Engine.dll
    .dll windows:5 windows x86 arch:x86

    739c189022f322123ec1d0668c6be67f


    Headers

    Imports

    Sections

  • $_55_/$_53_
    .dll windows:5 windows x86 arch:x86

    2bd11fd121cb365022227d6bf1f54d0d


    Headers

    Imports

    Sections

  • Uninstall.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • oem.ini
  • ֮.exe
    .exe windows:4 windows x86 arch:x86

    529e31f77e52cbf0a3f800a64416df7b


    Code Sign

    Headers

    Imports

    Sections

  • ֮.ini

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.