Overview

overview

7

Static

static

7

Ʈ�...��.url

windows7-x64

1

Ʈ�...��.url

windows10-2004-x64

1

ˢѺVIP.exe

windows7-x64

7

ˢѺVIP.exe

windows10-2004-x64

7

�...��.url

windows7-x64

1

�...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    0b8d69d98b6f21f9c242714cf766d9d4_JaffaCakes118

  • Size

    1.3MB

  • MD5

    0b8d69d98b6f21f9c242714cf766d9d4

  • SHA1

    b26c065fa9acb12aa167a571834d8d3dc51653a8

  • SHA256

    3320342e746604fb6b3bdeb75236d888ee6b080b55d71bed9905d93ff9845129

  • SHA512

    b622f1a5a3d7f3f91216675ec69298e126b13abb49c2cc2bde7dd4e249b005f475fadb30f7a67108449ec253e116e19ff39e684774c46af1251a835515755ff5

  • SSDEEP

    24576:RyPsSAE981OtCz0+WZr/ZjF5seNllwJmQX+0gJeqYmP/BXoKM1rflmaqszIJ:6K57TWBBMeNsJmDHJlZXoK2rfl/zIJ

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0b8d69d98b6f21f9c242714cf766d9d4_JaffaCakes118
    .zip
  • Ʈ.url
    .url
  • ˢѺVIP.exe
    .exe windows:5 windows x86 arch:x86

    b8a7e2cbc712373e0ae2e87a07419501


    Headers

    Imports

    Sections

  • .url