General

  • Target

    12x.rar

  • Size

    2.6MB

  • MD5

    92dcf07c823d3dcf32a783f78b42f0e0

  • SHA1

    cbb2ae1a18153d1057b8b0cea4e089f06af0a5ca

  • SHA256

    d42a6979a45d16942740664f324dc160f3371ef5176d2839722f79dd4ada75fe

  • SHA512

    7417ad2e37d1a084a113d7368a3bb5c9cf8418508be0c411d4ef4baf5481006b99ec9870aa7fcc820b0dc96c0c8630304d40c4e83676a043254548c0b3a1202e

  • SSDEEP

    49152:JoRLRxppZIivQ24Zh5TDhzTEgTJtjNbn6oyUZ+x5ChYb/krD9bysXZPpLD:JK1dkl5BxtZnvy9nChtn9bysBND

Score
7/10

Malware Config

Signatures

  • VMProtect packed file 2 IoCs

    Detects executables packed with VMProtect commercial packer.

Files

  • 12x.rar
    .rar
  • setup阅览6056.exe.vir
    .exe windows:5 windows x64 arch:x64

    4f0f401ddc83f2761b41831c14f61ead


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • 表格32116.exe.vir
    .exe windows:5 windows x64 arch:x64

    53732827012bf4544947dd570b87c58b


    Code Sign

    Headers

    Imports

    Exports

    Sections