Overview

overview

7

Static

static

7

给力VPN ...on.dll

windows7-x64

7

给力VPN ...on.dll

windows10-2004-x64

7

给力VPN ...xt.dll

windows7-x64

7

给力VPN ...xt.dll

windows10-2004-x64

7

给力VPN ...t3.dll

windows7-x64

7

给力VPN ...t3.dll

windows10-2004-x64

7

给力VPN ...et.dll

windows7-x64

7

给力VPN ...et.dll

windows10-2004-x64

7

给力VPN ...ln.dll

windows7-x64

7

给力VPN ...ln.dll

windows10-2004-x64

7

给力VPN ...��.url

windows7-x64

1

给力VPN ...��.url

windows10-2004-x64

1

给力VPN ...PN.exe

windows7-x64

7

给力VPN ...PN.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    1893921357fe2ffc6d07ef51a016f629_JaffaCakes118

  • Size

    941KB

  • MD5

    1893921357fe2ffc6d07ef51a016f629

  • SHA1

    e1e783a7524ec455b4a0fdd8fca341795f805c7c

  • SHA256

    4751920afdd56e476dfa97e0ba039837988ef3bf6003d3ed2bff93f915be57d6

  • SHA512

    d4e81cddd173ef337862a160724c85abe4ad03c3528be0fda468dd5dd99aa55fa0cfe0f53d2efad09f8e76108149588841dddedc757c0b6288ee74f4824c075c

  • SSDEEP

    24576:8DxgAypoc7mveMqg0lW7ppqAjvYrC0iJ3NIN:tfh6veMqg0lWqSvA/iJdIN

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 5 IoCs

    Detects file using ACProtect software.

  • UPX packed file 6 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

Files

  • 1893921357fe2ffc6d07ef51a016f629_JaffaCakes118
    .rar
  • 给力VPN 第②版/TrayIcon.fne
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • 给力VPN 第②版/iext.fnr
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • 给力VPN 第②版/iext3.fne
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • 给力VPN 第②版/internet.fne
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • 给力VPN 第②版/krnln.fnr
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • 给力VPN 第②版/新云软件.url
    .url
  • 给力VPN 第②版/给力VPN.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections