Overview

overview

7

Static

static

7

阿拉QQ�....1.exe

windows7-x64

7

阿拉QQ�....1.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    94e0a8390aa262585910149911f8eaa0_JaffaCakes118

  • Size

    932KB

  • MD5

    94e0a8390aa262585910149911f8eaa0

  • SHA1

    a12d46c46cf0784b396d37c0a00adf2d8c1f165e

  • SHA256

    4d5a815cdd36f05d6f0cf84cc71a8072e744e69f3c956536d0d39efed1d61615

  • SHA512

    3af8e6ea051e1d8bc294d4b65894275bb3cdc60c732600993978cf973221e762d885658417a38cf521ceab0bfbd054621f2c80be086749d5c7dc12bc5875122e

  • SSDEEP

    12288:RxqBfjP0XOqk8qFx4A1LdAlWQLLCFR3Tr8OwJJhoLgJ3kbjXXZzBp1h/N9f55HKu:/ijeOsAIlWQLLsNK3hoLXHzf793sGp

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 94e0a8390aa262585910149911f8eaa0_JaffaCakes118
    .rar
  • 阿拉QQ密码潜伏者6.1.exe
    .exe windows:4 windows x86 arch:x86

    350378238d21a703494a09ce2354a1a7


    Headers

    Imports

    Sections