Overview

overview

7

Static

static

7

预言者C...��.url

windows7-x64

1

预言者C...��.url

windows10-2004-x64

1

netsh_wins...et.bat

windows7-x64

3

netsh_wins...et.bat

windows10-2004-x64

3

预言者C...��.exe

windows7-x64

3

预言者C...��.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5dc8798bb291806ad9d912d5a8351bf4_JaffaCakes118

  • Size

    1.3MB

  • MD5

    5dc8798bb291806ad9d912d5a8351bf4

  • SHA1

    a11315f5048bfd811a548da636ac597b148c95ba

  • SHA256

    7b4242d0f853e55e3e1eedb34d442585ae23037c52a20b6e21324f8a7bc5acbd

  • SHA512

    ccb986822cb1f9d7488ef81b09c74a5d3f5d6c6607f111d052c8b787b6057a2da165d707fb744d3e8c38b45abae2eecd3846c89bf794615004dfc65142cf5cf0

  • SSDEEP

    24576:oLmL0sHC79SnoOjFCKWByTDsu8DtZH6cK6D5ZnLEpbTNOXOqHS:oMbaY+racK6D5VEYXOUS

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5dc8798bb291806ad9d912d5a8351bf4_JaffaCakes118
    .rar
  • 预言者CF辅助0602for1/155绿色软件站.url
    .url
  • 预言者CF辅助0602for1/23_0错误解决补丁.7z
    .7z
  • netsh_winsock_reset.bat
  • 预言者CF辅助0602for1/自动开枪配置.ini
  • 预言者CF辅助0602for1/预言者辅助v6.4通用版.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections