Overview

overview

7

Static

static

7

QQ手机�...��.exe

windows7-x64

7

QQ手机�...��.exe

windows10-2004-x64

7

河源下�...om.url

windows7-x64

1

河源下�...om.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ae8cb85d19234634d4a11bfb449dbf7b_JaffaCakes118

  • Size

    3.0MB

  • MD5

    ae8cb85d19234634d4a11bfb449dbf7b

  • SHA1

    2ea0a524ffb8bc6bc2ae00089f507e91362c1276

  • SHA256

    92795c3b3d1855998a54831c385b0621ed0374adee4ff64e12fd5a4674ea5a0b

  • SHA512

    7b7515fe871382327c50a338b28994bb8c9e3d78396b2ff697e743222bbc3fc516022ad4522a3afcb4c79aea01f4a5ad626e3799c8229f8e17d57cd7a6099e84

  • SSDEEP

    98304:Z9iYqXqrh3eDE6FNS4FeOeblvHYtbhAJNa:Z9CwejFLwLd4FGJNa

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ae8cb85d19234634d4a11bfb449dbf7b_JaffaCakes118
    .rar
  • QQ手机红包生成器.exe
    .exe windows:5 windows x86 arch:x86

    528fee4a664055f842b1a77cad340ce7


    Headers

    Imports

    Sections

  • 河源下载站-Xz7.com.url
    .url