Overview

overview

7

Static

static

7

更多软�...��.url

windows7-x64

1

更多软�...��.url

windows10-2004-x64

1

爱奇艺�...mp.exe

windows7-x64

7

爱奇艺�...mp.exe

windows10-2004-x64

7

飘荡软件.url

windows7-x64

1

飘荡软件.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2d2f5138b35a8afece0dd9e13f1f043f_JaffaCakes118

  • Size

    1.5MB

  • MD5

    2d2f5138b35a8afece0dd9e13f1f043f

  • SHA1

    a1535b80f762947e0dfa20e8db719d24413450ee

  • SHA256

    7fc10b77d03ee9abd88b040728233067bb04217a3e6074af15fef050e996b852

  • SHA512

    269f261b783b73d4943a0a77a788c6e53fabf0e8e2c23a13eae15362830f6edc990238eb1845d540bff0d90d6111e24715578ab33614bb30d9b44b39fccaaefb

  • SSDEEP

    24576:pVbUX4AutMQ5WoQel/v2JKZ2L7dn9XL5u9q2wzM72VPX2zEkTKf0WZ+g80cBzs:0Iv3otsX2sZ2vdfuM2D6VuEkTKfb5izs

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2d2f5138b35a8afece0dd9e13f1f043f_JaffaCakes118
    .rar
  • 更多软件下载.url
  • 爱奇艺去广告.vmp.exe
    .exe windows:5 windows x86 arch:x86

    0f8d0c93437584b4ea21a2cfd652a951


    Headers

    Imports

    Sections

  • 飘荡软件.url
    .url