Overview

overview

7

Static

static

7

智智加�...ok.dll

windows7-x64

7

智智加�...ok.dll

windows10-2004-x64

7

智智加�...��.url

windows7-x64

1

智智加�...��.url

windows10-2004-x64

1

智智加�...��.exe

windows7-x64

7

智智加�...��.exe

windows10-2004-x64

7

智智加�...��.url

windows7-x64

1

智智加�...��.url

windows10-2004-x64

1

智智加�...��.url

windows7-x64

1

智智加�...��.url

windows10-2004-x64

1

智智加�...��.url

windows7-x64

1

智智加�...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ec59cb846c0bd81378f9bb5f00336536_JaffaCakes118

  • Size

    609KB

  • MD5

    ec59cb846c0bd81378f9bb5f00336536

  • SHA1

    5ea0dc077eec59a12106b652422f5dba2d9e70bc

  • SHA256

    3e1a80e8a908d86872ba6d5ea619de1a0970ad73d309ec289c7bc413da98dd32

  • SHA512

    9f1c75987531b80573b9523ecf2c9765101a8837097bc4704677b87266a0eceb4490a34d23c18115618208c8d3323fc324533170692f576a7eef64e7bc21afdf

  • SSDEEP

    12288:XanK8h+SQ2rqJf4+jplArALpYhoE0Od0wW7EV2vmhbSmEZ72ZOI:XaKc3i9lZL+qE0OSwcGUcOI

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • ec59cb846c0bd81378f9bb5f00336536_JaffaCakes118
    .rar
  • 智智加强版抓包工具/WSOCKEXPERT.ini
  • 智智加强版抓包工具/WSockHook.dll
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:1 windows x86 arch:x86


    Headers

    Sections

  • 智智加强版抓包工具/快车2代.url
  • 智智加强版抓包工具/智智抓包工具.exe
    .exe windows:4 windows x86 arch:x86

    d4ff4e9520d2b9d618be12fecec0c0ac


    Headers

    Imports

    Sections

  • 智智加强版抓包工具/红软基地.url
  • 智智加强版抓包工具/说明.txt
  • 智智加强版抓包工具/说明.url
  • 智智加强版抓包工具/金山毒霸2008免费使用.url