Overview

overview

7

Static

static

7

小林子�...��.url

windows7-x64

1

小林子�...��.url

windows10-2004-x64

1

起凡春�...a3.exe

windows7-x64

7

起凡春�...a3.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    4de67c1d1bbe653e1defe07aa613c9e8_JaffaCakes118

  • Size

    1.1MB

  • MD5

    4de67c1d1bbe653e1defe07aa613c9e8

  • SHA1

    cc4341a12c1645e774f199da7d867d48617610a5

  • SHA256

    eeaa7dce67b004ec425aebd69e1b8e31dd92574afb7118d7a9a14aaca74b4321

  • SHA512

    3c7faf9d86223f5188df78095451400f27f2b274ffef8d5877ca39461a04cd89bcfb6c6aa9b2c935ab47460258546bb96777f5ebe01b1516e728a752c2d1ae9d

  • SSDEEP

    24576:ZQzNygZ+aOtJr6Y73SdNay8Cui+ez8a44SueT655t0a+eU/+x/:LA+ai3DS789i+eQa44SueT610aVD

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4de67c1d1bbe653e1defe07aa613c9e8_JaffaCakes118
    .rar
  • 使用★说明.txt
  • 小林子游戏网.url
  • 起凡春卷插件Beta3.exe
    .exe windows:4 windows x86 arch:x86

    a851b0408e7d9dead22e4d689a12831b


    Headers

    Imports

    Sections