Overview

overview

7

Static

static

7

支付宝�...�..exe

windows7-x64

7

支付宝�...�..exe

windows10-2004-x64

7

河源下�...om.url

windows7-x64

1

河源下�...om.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    32be7a18790b2b978630cc60ab1da0ac_JaffaCakes118

  • Size

    672KB

  • MD5

    32be7a18790b2b978630cc60ab1da0ac

  • SHA1

    8ca765e5cec520d7f0731f0ef24bfb9bc97f0761

  • SHA256

    8b624c1c7ee66173b065fb7362e01c8606f5aeaa42cfca2575aa24a37f5a1f1c

  • SHA512

    50707bb22bc729504894f7547238ac2ee05f6843ab8dbde1d2e1ade04afff9e5c953b30c867da35e22bdec17b12e13500b822467d614857d4587756092c2865d

  • SSDEEP

    12288:vKoRTQyvwbfSrHRnBbOwqUuEfEYxFRN6Gt4bn+D/M2YVlpsgTx83cf8HpDASOnI:vKoRi69UwoEfbH6u4r+D/yGgT7opMRnI

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 32be7a18790b2b978630cc60ab1da0ac_JaffaCakes118
    .rar
  • 支付宝装逼助手..exe
    .exe windows:4 windows x86 arch:x86

    64aa31e4e1ba9d836318eabe353a0790


    Headers

    Imports

    Sections

  • 河源下载站-Xz7.com.url
    .url