Overview

overview

7

Static

static

7

QQ玫瑰园丁/mg.exe

windows7-x64

7

QQ玫瑰园丁/mg.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    960485fecc24712b954121c37379cfe8_JaffaCakes118

  • Size

    1.4MB

  • MD5

    960485fecc24712b954121c37379cfe8

  • SHA1

    f58a4553610322dbf37d1462f6a72718da743573

  • SHA256

    6d92ef1cc8aaf2353e104c154dfdc7558bf117d3b5c72dd136c10d0e73302c28

  • SHA512

    88226fb5aaf0fb436330d27ac7bc2782c56c00ddca5832456b30f7eaacf81f1b292916131028fd7589609b264596f6f8259b7ebbb643607640aa7b19349f654d

  • SSDEEP

    24576:e98s6DhdDXPzkSwwDX9oGbysz6ut2y8yyLIRUSOnAFK2hnGVcww3xX6wbpT:U8s6TD/FDLiyYMhOnAFK2JGVcwxwbpT

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 960485fecc24712b954121c37379cfe8_JaffaCakes118
    .rar
  • QQ玫瑰园丁/mg.edb
  • QQ玫瑰园丁/mg.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • QQ玫瑰园丁/user.dat
  • QQ玫瑰园丁/说明.txt