Overview

overview

7

Static

static

7

Ghost精灵V6.0.exe

windows7-x64

7

Ghost精灵V6.0.exe

windows10-2004-x64

7

新云软件.url

windows7-x64

1

新云软件.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8df4d8843cfb0640261fae5c74890e6a_JaffaCakes118

  • Size

    3.2MB

  • MD5

    8df4d8843cfb0640261fae5c74890e6a

  • SHA1

    7ad572f242749b546ae24a9c933f56430cf6791b

  • SHA256

    fc46de2d045e789cb3392618f02c88aa89e7be2ec959b23493e36a7e4910b755

  • SHA512

    6840966750c0e1cb2f0257a851d9d05b1c36e1515c9a43e96d931d31fde0fa7e3e71cb91528e0619e863c347439205ca90a066c5ef53ed7680ff07932718c366

  • SSDEEP

    49152:YbxHw7Yc1HLbZ1ZGCG76tQHpN3rRW+bZPK+f7h6wyVHyxhDfo1jS2D:8Qp1rbHZGCG7Cs3rRWaZPKowwt72rD

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 8df4d8843cfb0640261fae5c74890e6a_JaffaCakes118
    .rar
  • Ghost精灵V6.0.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 新云软件.url
    .url