Overview

overview

7

Static

static

3

HA_AllokMP...CZ.exe

windows7-x64

7

HA_AllokMP...CZ.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    bf5480337da5688b6e3429c8f0a14aa2_JaffaCakes118

  • Size

    5.0MB

  • MD5

    bf5480337da5688b6e3429c8f0a14aa2

  • SHA1

    e8191e1e0aa126e9854a311c7d28e9d30d4768b1

  • SHA256

    bc1680ba3f138f7aa0b90edf3fc4e44dcb8a2a4700a0f63db0f4e81dee2df1a8

  • SHA512

    8eebfdb1cdc51b515ac307eba270ac62ce1586130315d76523e1cf89df5a101916912802fdbabde9f3d06374ed2181c1f5905a1d7638beb345285c95ba845830

  • SSDEEP

    98304:TsSG2HEAPjiAAm3OaLH4zcakaCcNOKuhrW+tZQRMpHrWShw7vqHOOOpH62VN4TMS:Ts6k09V3OaLHNRzcNO7E+oRIrW7CHdSI

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bf5480337da5688b6e3429c8f0a14aa2_JaffaCakes118
    .rar
  • HA_AllokMP32AMRConverter-232(shw)_CZ.EXE
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections

  • allok_amrconverter.jpg
    .jpg
  • allok_amrconverter.md5
  • 下载说明.htm
    .html .js polyglot
  • 汉化说明.txt