Overview

overview

7

Static

static

7

wku232/帮助.chm

windows7-x64

1

wku232/帮助.chm

windows10-2004-x64

1

wku232/微...32.exe

windows7-x64

1

wku232/微...32.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    282748cb7ab9dd516d2a3442b5ef5a0b_JaffaCakes118

  • Size

    13.5MB

  • MD5

    282748cb7ab9dd516d2a3442b5ef5a0b

  • SHA1

    eb724ceb27c5f3008984a1332f51b0823af5ee05

  • SHA256

    e1370e70b78ac3ba52a985da1d6c30b83761059232377602ffb05361ee31d014

  • SHA512

    0651ee156e229a3b992d0a25e7a650a26178eae4a52c9be35557f44d857d5a5e850ebac39b01aeef76a25ceab17160c1515556d8155e9676263543395a05b661

  • SSDEEP

    393216:rVhjl5cglXyJkqCLLrVpFFo5yga5obbwR076JA/FYotcd1i7:njl51kKjtga5obER079Soade

Score
7/10
aspackv2

Malware Config

Signatures

  • ASPack v2.12-2.42 1 IoCs

    Detects executables packed with ASPack v2.12-2.42

    aspackv2
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 282748cb7ab9dd516d2a3442b5ef5a0b_JaffaCakes118
    .rar
  • wku232/dat.edb
  • wku232/dat.edt
  • wku232/dat2.edb
  • wku232/dat2.edt
  • wku232/jilu.edb
  • wku232/tong.edb
  • wku232/下载说明.htm
    .html .js polyglot
  • wku232/帮助.chm
    .chm
  • wku232/微平酷酷贴2.32.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • wku232/样版/样版1.bmp
  • wku232/样版/样版2.jpg
    .jpg
  • wku232/样版/样版3.jpg
    .jpg
  • wku232/相片/1.jpg
    .jpg
  • wku232/相片/2.jpg
    .jpg
  • wku232/相片/3.jpg
    .jpg
  • wku232/相片/4.jpg
    .jpg
  • wku232/相片/5.jpg
    .jpg
  • wku232/花边/花边01.bmp
  • wku232/花边/花边02.bmp
  • wku232/花边/花边03.bmp
  • wku232/花边/花边04.bmp
  • wku232/花边/花边05.bmp
  • wku232/花边/花边06.bmp
  • 下载说明.htm
    .html .js polyglot