Overview

overview

7

Static

static

7

快递查�...AD.dll

windows7-x64

3

快递查�...AD.dll

windows10-2004-x64

3

快递查�...��.exe

windows7-x64

7

快递查�...��.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8c6667795cf339ba983a2e8ff13f1937_JaffaCakes118

  • Size

    523KB

  • MD5

    8c6667795cf339ba983a2e8ff13f1937

  • SHA1

    40c1b093611c1e839ecba00fb69e1e4cf653c84f

  • SHA256

    8d4a137b0c3843a56a7fb4082aecee84eebfaac40ffb411d8b679086145c8773

  • SHA512

    e1a1eb55e62a9120e0fcc8469752d08a1061962a6399a072c3fca60a777a6548b4c6888120c3e89612297e33153a134710d93136af918cd07c3a25c180d1131f

  • SSDEEP

    12288:/WpzBUWqEKOeh4nfKpvjdLkA2WQ5S4ABIYqDduwfkq//c:g1UWq5OehEKBjxkkH4sIZvcU/c

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 8c6667795cf339ba983a2e8ff13f1937_JaffaCakes118
    .rar
  • 快递查询助手 v1.0 预览版/KillAD.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • 快递查询助手 v1.0 预览版/快递查询助手 v1.0 预览版.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 快递查询助手 v1.0 预览版/快递查询助手 v1.0 预览版更新记录.txt