General

  • Target

    c51020ac4353c074836cf7398f645e74

  • Size

    2.6MB

  • MD5

    c51020ac4353c074836cf7398f645e74

  • SHA1

    a6f7ee8aa84a074082dbb1da1fcc9a983d6be61b

  • SHA256

    5157dfe613e6c9d4a3ced8c444f73d8ae9b390559f41e69ed8409007116c8920

  • SHA512

    eb0b927962d1fb9169a281469ff5ae97020f0ce0e264c147ae68884ebfb330be536371efa2d65288f22c7e317249d904c5321f8e1672b101ab9606337e00ef6a

  • SSDEEP

    49152:10oOJp8YokrceYVgUrKFG/ixdWfNUnA+8Kn30Auj7VmQHTiUGV0oXCyk5dMcE4:+VAkrmqsBlm8kQHhG2oLk5djE4

Score
3/10

Malware Config

Signatures

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • c51020ac4353c074836cf7398f645e74
    .rar
  • jmds.exe
    .exe windows:4 windows x86 arch:x86

    170729c4965736ee8f8f4d1bab77cf38


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    57354bdeea3dfae6e948101add87501a


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • cswj.csw
  • license.txt
  • uninst.exe
    .exe windows:4 windows x86 arch:x86

    170729c4965736ee8f8f4d1bab77cf38


    Headers

    Imports

    Sections

  • wjsm.rtf
    .rtf
  • ߼ܽܴʦ.exe
    .exe windows:4 windows x86 arch:x86

    5a498eee87e4d89512a84502f500181f


    Headers

    Imports

    Sections

  • ߼ܽܴʦ.exe.bak
    .exe windows:4 windows x86 arch:x86

    9165ea3e914e03bda3346f13edbd6ccd


    Headers

    Imports

    Sections

  • 新云软件.url
    .url