General

  • Target

    893c567f344409be86ee9ab8b6220e3e92d25318f542c8ac34a5db2b3b4d10cb

  • Size

    692KB

  • MD5

    e13b09417f7ecd306244f864bad711ba

  • SHA1

    173d3bb9c5d0280312670a41557a208b30508d22

  • SHA256

    893c567f344409be86ee9ab8b6220e3e92d25318f542c8ac34a5db2b3b4d10cb

  • SHA512

    c26e035bddba3e8086dd270c75aeead2870ed7cdd982e1e07b757bf25d1a8e2f86a9f479a4c0969286922498c44b39f225b9fe58b3f33ce15dd61f100730151b

  • SSDEEP

    12288:kSsllPWNkxMLL/1H7phjT5dMaE7HVzDZDDralytOe5xOn4wOqRqDNBcD:X2Mv9bHjQD1ZeTe5lwOqRqp8

Score
3/10

Malware Config

Signatures

  • One or more HTTP URLs in qr code identified

    Detects presence of HTTP links in QR codes.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 893c567f344409be86ee9ab8b6220e3e92d25318f542c8ac34a5db2b3b4d10cb
    .zip
  • office����.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • ��װ����.txt
  • ��װ������ȡ.jpg
    .jpg
    • http://weixin.qq.com/r/tS-x6dzEI4FcrZiK93qn

  • Զ�̷���.url
    .url