Overview

overview

7

Static

static

7

福星基�...Vw.dll

windows7-x64

1

福星基�...Vw.dll

windows10-2004-x64

1

福星基�...il.exe

windows7-x64

7

福星基�...il.exe

windows10-2004-x64

7

福星基�...Xp.dll

windows7-x64

1

福星基�...Xp.dll

windows10-2004-x64

1

福星基�...gn.dll

windows7-x64

1

福星基�...gn.dll

windows10-2004-x64

1

福星基�...gn.dll

windows7-x64

1

福星基�...gn.dll

windows10-2004-x64

1

福星基�...Fv.dll

windows7-x64

1

福星基�...Fv.dll

windows10-2004-x64

1

福星基�...Mn.dll

windows7-x64

1

福星基�...Mn.dll

windows10-2004-x64

1

福星基�...Px.dll

windows7-x64

1

福星基�...Px.dll

windows10-2004-x64

1

福星基�...Vw.dll

windows7-x64

1

福星基�...Vw.dll

windows10-2004-x64

1

福星基�...de.exe

windows7-x64

3

福星基�...de.exe

windows10-2004-x64

3

福星基�...st.dll

windows7-x64

7

福星基�...st.dll

windows10-2004-x64

7

福星基�...nt.dll

windows7-x64

1

福星基�...nt.dll

windows10-2004-x64

1

福星基�...pa.dll

windows7-x64

1

福星基�...pa.dll

windows10-2004-x64

1

福星基�...pu.dll

windows7-x64

1

福星基�...pu.dll

windows10-2004-x64

1

福星基�...qu.dll

windows7-x64

1

福星基�...qu.dll

windows10-2004-x64

1

福星基�...fm.dll

windows7-x64

1

福星基�...fm.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    e24a386c636c7e169d4954d8856aa174_JaffaCakes118

  • Size

    4.5MB

  • MD5

    e24a386c636c7e169d4954d8856aa174

  • SHA1

    9d1a092106bf7f33c6b9703dd0d294e9e1297fac

  • SHA256

    4eb2bfa806e6ac69d0583593881d64be26af4d575af1b828feefb6a4e9edff20

  • SHA512

    adf4cdf9f69cd0788aaf15f86a07997ea9cfa42d9c96e6acd1747cf94b763d8807e60cae7b96f52eac0f68b7ff462c20b96aea656dd882571d8d18ed3b57348d

  • SSDEEP

    98304:lq/jlhfuNzPVIFVWCdAyxviV4OlJrenkmz6I8m7Jp2PLVzu3ufw:YjehVIGCdz1OlJSBn8Spcz8u4

Score
7/10
themida

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

    themida
  • Unsigned PE 16 IoCs

    Checks for missing Authenticode signature.

Files

  • e24a386c636c7e169d4954d8856aa174_JaffaCakes118
    .rar
  • 福星基金通绿色版 使用前必读.txt
  • 福星基金通绿色版/AxInterop.SHDocVw.DLL
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/FundsDetail.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • 福星基金通绿色版/HpBtnXp.DLL
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/HphrBt4Lgn.DLL
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/HphrLgn.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/HphrLibFv.DLL
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/HphrMn.DLL
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/HpnrMkIPx.DLL
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/Interop.SHDocVw.DLL
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/OnlineUpgrade.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • 福星基金通绿色版/asist.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • 福星基金通绿色版/favorites.db
    .xml
  • 福星基金通绿色版/fdinfo.dll
    .xml
  • 福星基金通绿色版/honvefy.dat
  • 福星基金通绿色版/hrPnt.DLL
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/hrSepa.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/hrSepu.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/hrSequ.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/hrasfm.DLL
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 福星基金通绿色版/hrifmtn.dll
    .xml
  • 福星基金通绿色版/info.wav
  • 福星基金通绿色版/local.ini
    .xml
  • 福星基金通绿色版/record.dat
  • 福星基金通绿色版/sound/fail.wav
  • 福星基金通绿色版/sound/pass.wav
  • 福星基金通绿色版/user.db
  • 福星基金通绿色版/使用前必读.txt
  • 福星基金通绿色版/新云软件.url
    .url