Overview

overview

6

Static

static

3

TheWorld2....hs.exe

windows7-x64

3

TheWorld2....hs.exe

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

TheWorld_CHS_U.exe

windows7-x64

6

TheWorld_CHS_U.exe

windows10-2004-x64

6

新云软件.url

windows7-x64

1

新云软件.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    d5c1255b363ce7f6236a400380911705

  • Size

    649KB

  • MD5

    d5c1255b363ce7f6236a400380911705

  • SHA1

    86d60a41182fdf6444b8e52c1ca281de14f5738a

  • SHA256

    ed45bba145d56d4ee2c205696039063dd3dd80896c935b5d217c60be3fec329e

  • SHA512

    7a0eb7993e9f96d36d883585f111c7558b177ca4e30ed4aeddb6ceb11cea2399ed5159cc6c30eddc299310cfe5aeac335d862a40f0c4ae1300a1d42088665ade

  • SSDEEP

    12288:H1g/rCoAVpxGmHnu5V3m8R3X8GIqm3YC9BD7jNMvZLi1rZu70K5cAB:HCrCDS9Rn8rqmDB7qOMl

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • d5c1255b363ce7f6236a400380911705
    .rar
  • TheWorld2.4Final_2.4.1.5_chs.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:4 windows x86 arch:x86

    9b6b6a7858e17fb0b17e1c1428330343


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ShortCut_chs.ini
  • $PLUGINSDIR/ShortCut_cht.ini
  • $PLUGINSDIR/ShortCut_enu.ini
  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • TheWorld_CHS_U.exe
    .exe windows:4 windows x86 arch:x86

    529e31f77e52cbf0a3f800a64416df7b


    Code Sign

    Headers

    Imports

    Sections

  • UnInst.exe.nsis
  • 新云软件.url
    .url