Overview

overview

7

Static

static

7

gt/SkinH_EL.dll

windows7-x64

7

gt/SkinH_EL.dll

windows10-2004-x64

7

gt/WebBrowser2.dll

windows7-x64

7

gt/WebBrowser2.dll

windows10-2004-x64

7

gt/baiduzd.exe

windows7-x64

7

gt/baiduzd.exe

windows10-2004-x64

7

gt/krnln.dll

windows7-x64

7

gt/krnln.dll

windows10-2004-x64

7

gt/新云软件.url

windows7-x64

1

gt/新云软件.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    cb13c1ab714107e101cbe9fa094aaf7f

  • Size

    751KB

  • MD5

    cb13c1ab714107e101cbe9fa094aaf7f

  • SHA1

    1fbdce3e0de1f1aa6c62aa11a6122160ee97727e

  • SHA256

    2dea8c82e35ebf4a545ee151007e14b405302da13bef71a766626102cf751ccb

  • SHA512

    5605bddabbf1d552e3fdc6d7f2bacc19346e6c54ea75a741acc8cb36e42e6aee29fac0de762d384de8f71fc2de1e8bd016bc2def4f62450f53f3c755658f4579

  • SSDEEP

    12288:aWkRwS5xntf2qP/URPKpHHuTQ5Zov2j5uGI6vVqbahZ6YF90fQ:aRLN1P/kPKpHOQy2xjhIYUfQ

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 3 IoCs

    Detects file using ACProtect software.

  • UPX packed file 4 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 8 IoCs

    Checks for missing Authenticode signature.

Files

  • cb13c1ab714107e101cbe9fa094aaf7f
    .rar
  • gt/SkinH_EL.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • gt/WebBrowser2.fne
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • gt/baidudb.mdb
  • gt/baiduzd.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • gt/baiduzd.ini
  • gt/class.ini
  • gt/krnln.fnr
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • gt/skn.she
  • gt/新云软件.url
    .url
  • gt/骨头软件工作室.txt