Overview

overview

7

Static

static

7

QQcr2.97/Q...��.url

windows7-x64

1

QQcr2.97/Q...��.url

windows10-2004-x64

1

QQcr2.97/�...97.exe

windows7-x64

1

QQcr2.97/�...97.exe

windows10-2004-x64

1

QQcr2.97/�...��.url

windows7-x64

1

QQcr2.97/�...��.url

windows10-2004-x64

1

QQcr2.97/�...��.url

windows7-x64

1

QQcr2.97/�...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    265fc5ec06f599f83d2d4bba0033c8b4_JaffaCakes118

  • Size

    612KB

  • MD5

    265fc5ec06f599f83d2d4bba0033c8b4

  • SHA1

    7e75dc990c1f631e5a848fc59dcb24346e05e50f

  • SHA256

    6277e16762f7ebf6bf1b7d2cb2d72c131da4524df91892fc5c8e136f42e8c8f4

  • SHA512

    68ea85019058ab1d400700362ebc35782fb885cd4aaaf8f847dffd9dd43d702de3684176fed32ab85e9e33dd53620c481cfdaee3a357858653da3c9977ea98c3

  • SSDEEP

    12288:xoEknpQv21gkHZj3TuQQ1uE1jUxwXWoOw03r:CEGQvMDWI+Woi7

Score
7/10
aspackv2

Malware Config

Signatures

  • ASPack v2.12-2.42 1 IoCs

    Detects executables packed with ASPack v2.12-2.42

    aspackv2
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 265fc5ec06f599f83d2d4bba0033c8b4_JaffaCakes118
    .rar
  • QQcr2.97/QQ农牧超人官网论坛.url
    .url
  • QQcr2.97/use.edb
  • QQcr2.97/使用说明.txt
  • QQcr2.97/农牧超人2.97.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • QQcr2.97/快播电影天堂电影天堂在线观看快播电影搜索免费在线电影快播高清电影搜索.url
    .url
  • QQcr2.97/新云软件.url
    .url