Overview

overview

5

Static

static

5

portable.zip

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    portable.zip

  • Size

    4.2MB

  • MD5

    e01bf7d5d6e945fd4c4b6264bbfb0e6e

  • SHA1

    f795f56fdc28a10e6164f23c29c804391f4f7adf

  • SHA256

    83a92b2f5388b580d5ebf0b7194b0a7eb26b6cfc769a32dc0139a5607235cc6b

  • SHA512

    4ecf0eef4865799b7761fdf1d0c61c40dbd3d4f94944979e5ccedeb7a9347692b8c652b7f8bcdac7d2204c8dc27240c63f72e3ea1556e34b7e68ec335b815ea3

  • SSDEEP

    98304:XloqGcpvwL5j8cvK+tL65Vt+vwDGGLGmmWvZnJo:VBpvwtJS+tW5CvqGGLGmBno

Score
5/10

Malware Config

Signatures

  • AutoIT Executable 3 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 8 IoCs

    Checks for missing Authenticode signature.

Files

  • portable.zip
    .zip
  • portable/AppPortable/Data/WeMod/App/init.json
  • portable/AppPortable/Data/WeMod/Local Storage/leveldb/000003.log
  • portable/AppPortable/Data/WeMod/Local Storage/leveldb/000004.log
  • portable/AppPortable/Data/WeMod/Local Storage/leveldb/000005.ldb
  • portable/AppPortable/Data/WeMod/Local Storage/leveldb/CURRENT
  • portable/AppPortable/Data/WeMod/Local Storage/leveldb/LOG
  • portable/AppPortable/Data/WeMod/Local Storage/leveldb/MANIFEST-000001
  • portable/AppPortable/Other/7z/7z.dll
    .dll windows:4 windows x64 arch:x64

    4a683d6f78cddf7c7cda44d5a4669025


    Headers

    Imports

    Exports

    Sections

  • portable/AppPortable/Other/7z/7z.exe
    .exe windows:4 windows x64 arch:x64

    c40fa24fe18adb90df2122ca10e52ab2


    Headers

    Imports

    Sections

  • portable/AppPortable/Other/7z/Formats/Asar.64.dll
    .dll windows:5 windows x64 arch:x64

    ab0e2885ccc6c5b925d1d6a4e20f6fd4


    Headers

    Imports

    Exports

    Sections

  • portable/AppPortable/Other/PRO_GIFT
    .js
  • portable/AppPortable/Other/WPDUP.bat
    .bat .vbs
  • portable/AppPortable/Other/binmay.exe
    .exe windows:4 windows x86 arch:x86

    6b98f5d5bff7b22abe8ac95cbcec1559


    Headers

    Imports

    Sections

  • portable/AppPortable/WeMod Portable.exe
    .exe windows:4 windows x64 arch:x64

    a2335a5575f185cdc0dee69d84d2ea32


    Headers

    Imports

    Sections

  • portable/AppPortable/WeMod Portable.ini
  • portable/Data/WeMod Local.ini
  • portable/Data/WeMod Portable.ini
  • portable/Data/WeMod Updater.ini
  • portable/Readme.txt
  • portable/WeMod Local.exe
    .exe windows:5 windows x64 arch:x64

    77d45b1ee20c3b020c48ab42d23ce5ef


    Headers

    Imports

    Sections

  • portable/WeMod Portable.exe
    .exe windows:5 windows x64 arch:x64

    77d45b1ee20c3b020c48ab42d23ce5ef


    Headers

    Imports

    Sections

  • portable/WeMod Updater.exe
    .exe windows:5 windows x64 arch:x64

    77d45b1ee20c3b020c48ab42d23ce5ef


    Headers

    Imports

    Sections