Overview

overview

4

Static

static

4

hellokitty...gen.sh

windows7-x64

3

hellokitty...gen.sh

windows10-2004-x64

3

hellokitty...pt.pdf

windows7-x64

1

hellokitty...pt.pdf

windows10-2004-x64

1

hellokitty...ypt.js

windows7-x64

1

hellokitty...ypt.js

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    kjtyy.zip

  • Size

    827KB

  • MD5

    40519ebf08142c836fe3aa08b2bbed23

  • SHA1

    c228693a9be709d1f6a114d3cc62e20dde19e146

  • SHA256

    43e2226c82a4c61bd3fc05a4020b9e132ba3df78101ad642adff6b1ba475c28e

  • SHA512

    437729679600186e442fc673030f30a1487112e4fd770d3b5d32d2e758925020fba54d2354b298d3771cfe86d068fad59d29108f22b32e19cd62923290b8d1e1

  • SSDEEP

    24576:f9aW8njFMiX3UXTTBMEd4iZhtg+Y1pxLM4pMwgUq9QBAO:f033UjTrrwA5RS/

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink

Files

  • kjtyy.zip
    .zip

    Password: infected

  • hellokitty/.gitignore
  • hellokitty/Innocent.sln
  • hellokitty/Innocent/Base64.cpp
  • hellokitty/Innocent/Base64.h
  • hellokitty/Innocent/Encryptor.cpp
  • hellokitty/Innocent/Innocent.vcxproj
    .xml
  • hellokitty/Innocent/Innocent.vcxproj.filters
  • hellokitty/Innocent/Innocent.vcxproj.user
  • hellokitty/Innocent/aesMbedTls.hpp
  • hellokitty/Innocent/config.h
  • hellokitty/Innocent/ntru.hpp
  • hellokitty/Innocent/randomMbedTls.hpp
  • hellokitty/NTRUEncrypt/AUTHORS
  • hellokitty/NTRUEncrypt/CC0-Legal
  • hellokitty/NTRUEncrypt/ChangeLog
  • hellokitty/NTRUEncrypt/INSTALL
  • hellokitty/NTRUEncrypt/LICENSE
  • hellokitty/NTRUEncrypt/Makefile.am
  • hellokitty/NTRUEncrypt/PATENTS
  • hellokitty/NTRUEncrypt/README
  • hellokitty/NTRUEncrypt/autogen.sh
  • hellokitty/NTRUEncrypt/configure.ac
  • hellokitty/NTRUEncrypt/doc/UserNotes-NTRUEncrypt.pdf
    .pdf

    • http://technet.microsoft.com/en-us/library/cc751157.aspx

  • hellokitty/NTRUEncrypt/driver_test/Makefile.old
  • hellokitty/NTRUEncrypt/driver_test/__ntruEncrypt.c
  • hellokitty/NTRUEncrypt/include/ntru_crypto.h
  • hellokitty/NTRUEncrypt/include/ntru_crypto_drbg.h
  • hellokitty/NTRUEncrypt/include/ntru_crypto_error.h
  • hellokitty/NTRUEncrypt/include/ntru_crypto_platform.h
  • hellokitty/NTRUEncrypt/libntruencrypt.sym
  • hellokitty/NTRUEncrypt/sample/sample_NTRUEncrypt.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_drbg.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_hash.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_hash.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_hash_basics.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_hmac.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_hmac.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_msbyte_uint32.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_msbyte_uint32.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_convert.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_convert.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_encrypt.c
    .js
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_encrypt_key.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_encrypt_key.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_encrypt_param_sets.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_encrypt_param_sets.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_mgf1.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_mgf1.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_mult_coeffs_karat.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_mult_coeffs_simd.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_mult_indices.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_mult_indices_32.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_mult_indices_64.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_mult_indices_simd.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_poly.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_ntru_poly.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_sha.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_sha1.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_sha1.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_sha2.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_sha2.h
  • hellokitty/NTRUEncrypt/src/ntru_crypto_sha256.c
  • hellokitty/NTRUEncrypt/src/ntru_crypto_sha256.h
  • hellokitty/NTRUEncrypt/test/bench.c
  • hellokitty/NTRUEncrypt/test/check_common.c
  • hellokitty/NTRUEncrypt/test/check_common.h
  • hellokitty/NTRUEncrypt/test/check_internal.c
  • hellokitty/NTRUEncrypt/test/check_internal_key.c
  • hellokitty/NTRUEncrypt/test/check_internal_mgf.c
  • hellokitty/NTRUEncrypt/test/check_internal_poly.c
  • hellokitty/NTRUEncrypt/test/check_internal_sha.c
  • hellokitty/NTRUEncrypt/test/check_public.c
  • hellokitty/NTRUEncrypt/test/sanity.c
  • hellokitty/NTRUEncrypt/test/test_common.c
  • hellokitty/NTRUEncrypt/test/test_common.h
  • hellokitty/NTRUEncrypt/vs2012/NtruBuild.sln
  • hellokitty/NTRUEncrypt/vs2012/NtruEncrypt_DLL.vcxproj
  • hellokitty/NTRUEncrypt/vs2012/Sample_NTRUEncrypt.vcxproj
  • hellokitty/crc32/crc32.cpp
  • hellokitty/crc32/crc32.h
  • hellokitty/decoder/Decryptor.cpp
  • hellokitty/decoder/decoder.vcxproj
    .xml
  • hellokitty/decoder/decoder.vcxproj.filters
  • hellokitty/decoder/decoder.vcxproj.user
  • hellokitty/enc-struct.h
  • hellokitty/new-private-ntru-key-debug.h
  • hellokitty/new-private-ntru-key-release.h
  • hellokitty/new-public-ntru-key-debug.h
  • hellokitty/new-public-ntru-key-release.h
  • hellokitty/ntru256gen/Keygen.cpp
  • hellokitty/ntru256gen/ntru256gen.vcxproj
    .xml
  • hellokitty/ntru256gen/ntru256gen.vcxproj.filters
  • hellokitty/ntru256gen/ntru256gen.vcxproj.user
  • hellokitty/processnames.h
  • hellokitty/random.h
  • hellokitty/sha256/sha256.cpp
  • hellokitty/sha256/sha256.h