Overview

overview

7

Static

static

7

咚咚4399...��.exe

windows7-x64

7

咚咚4399...��.exe

windows10-2004-x64

7

木木游�...om.url

windows7-x64

1

木木游�...om.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    877462e69dc58769f6d1d22b4e54c3bf_JaffaCakes118

  • Size

    1.5MB

  • MD5

    877462e69dc58769f6d1d22b4e54c3bf

  • SHA1

    34674f917fd89cc3d5967a07de8b1772586ae109

  • SHA256

    b52091d380b729ca8efdad7a6a5ead9cfaa0161026231ef24a35960ee3dce8b2

  • SHA512

    fd122b17da7ae107d93ed5b7eabe21347088421f2ef67112ad03510e3e7f840689fca595adc53c9079a8112ee63a7b36804018a65b8aaf3f0d0a20da201d1d91

  • SSDEEP

    24576:2R8wLi/JlYzD5gzVfqHmj7xUgvNRTZCg58JDqiFLAuygQNvU7ysvI32YMiRXAwjo:yXieD5gdNvxBAJuiaoQN4O32YnwL

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 877462e69dc58769f6d1d22b4e54c3bf_JaffaCakes118
    .rar
  • 下载说明.txt
  • 咚咚4399枪魂秒杀辅注.exe
    .exe windows:5 windows x86 arch:x86

    834b2f5a594577553e81184308871ac5


    Headers

    Imports

    Sections

  • 木木游戏网-www.mumu168.com.url
    .url