Overview

overview

7

Static

static

7

QQ伴侣(�...�).exe

windows7-x64

7

QQ伴侣(�...�).exe

windows10-2004-x64

7

QQ伴侣(�...��.url

windows7-x64

1

QQ伴侣(�...��.url

windows10-2004-x64

1

QQ伴侣(�...��.url

windows7-x64

1

QQ伴侣(�...��.url

windows10-2004-x64

1

QQ伴侣(�...��.url

windows7-x64

1

QQ伴侣(�...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    6f6f2e9fe47b5648403c036b4ef47ff4_JaffaCakes118

  • Size

    450KB

  • MD5

    6f6f2e9fe47b5648403c036b4ef47ff4

  • SHA1

    bd1cafe090764b56ec735669264f1866c03cfdc1

  • SHA256

    43c0d65230bd9416105d49205ec85428e45d48c500d18759b68a998f657a734d

  • SHA512

    05323374a3e990f0e8dcc05b03871a458f4374439f5756b9475b7680605b5b80457c4faeafeb12dbd0a61cb9087a51241c3df8f0a75482c55287592f3194337f

  • SSDEEP

    12288:O4qIS63FyVwutsSKi0nH0YB/N+OzsEIXoj1PITj:OTtsBnUYB/NpIK1Pcj

Score
7/10
aspackv2upx

Malware Config

Signatures

  • ASPack v2.12-2.42 1 IoCs

    Detects executables packed with ASPack v2.12-2.42

    aspackv2
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6f6f2e9fe47b5648403c036b4ef47ff4_JaffaCakes118
    .rar
  • QQ伴侣(牧场版)/QQ伴侣(牧场版).exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • QQ伴侣(牧场版)/QQ农场-首页.url
    .url
  • QQ伴侣(牧场版)/sound/音频1.wav
  • QQ伴侣(牧场版)/sound/音频2.wav
  • QQ伴侣(牧场版)/sound/音频3.wav
  • QQ伴侣(牧场版)/system_mc.ini
  • QQ伴侣(牧场版)/使用前须知.txt
  • QQ伴侣(牧场版)/使用说明.url
    .url
  • QQ伴侣(牧场版)/免责声明.txt
  • QQ伴侣(牧场版)/外挂2345网.url
    .url
  • QQ伴侣(牧场版)/外挂注册.reg
  • QQ伴侣(牧场版)/更新日志.txt