Overview

overview

7

Static

static

7

155绿色�...��.url

windows7-x64

1

155绿色�...��.url

windows10-2004-x64

1

卡哇伊透视.exe

windows7-x64

7

卡哇伊透视.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    1be97b0eb3176af1756b432b4d9d921d_JaffaCakes118

  • Size

    180KB

  • MD5

    1be97b0eb3176af1756b432b4d9d921d

  • SHA1

    3e2ffa939cf3a276339166ce04dde5853d6c33d5

  • SHA256

    d9188d376e9f4e3c6dc76c0f420076a607304279cfd06003451ed89a8a4b55b4

  • SHA512

    a34f806ba7b0a317727bbea01d389d885c4b346b49f01edac2cdbaddf9911baf9dec17d4e2cbe9ec30a4aefb22f666dc936a9a297866780ea9084f824dc8df71

  • SSDEEP

    3072:dIrd2F1BKSgVtfHB3Pt2Np94w66ihazl8CSqNcbvEohbfpY/owGumrrfTYlYIssC:6r0F7KSgV1P2Np9r6FgIdXhbRYQwColu

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1be97b0eb3176af1756b432b4d9d921d_JaffaCakes118
    .rar
  • 155绿色软件站.url
    .url
  • 卡哇伊透视.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 防SX非法补丁.reg
  • 飞天隐身外挂.reg