Overview

overview

7

Static

static

7

QQtalker.exe

windows7-x64

7

QQtalker.exe

windows10-2004-x64

7

新云软件.url

windows7-x64

1

新云软件.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f0ca35035f5abcc69a20dcb056e99844_JaffaCakes118

  • Size

    147KB

  • MD5

    f0ca35035f5abcc69a20dcb056e99844

  • SHA1

    ede3edbec8b9f7f6ca754a47257baa730b243bcb

  • SHA256

    76ed23f8f5b187e77df63aebbbdbbd32e845f5b277c72e8c76df83d86523ef72

  • SHA512

    57a050654b49c69c331088b8a50b935e6991cbeceb7336ae71893bad07d55370564cc4def4847cb1b624feb36a43e9bd62e7a4b0b87e315c06d4e453468a5cbb

  • SSDEEP

    3072:q1CJ5MWnyin+h6rnosnLv9S2tvebHExqukGHMXn:q1CYcyEqQBS2t8kx+GHM3

Score
7/10
aspackv2upx

Malware Config

Signatures

  • ASPack v2.12-2.42 1 IoCs

    Detects executables packed with ASPack v2.12-2.42

    aspackv2
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f0ca35035f5abcc69a20dcb056e99844_JaffaCakes118
    .rar
  • QQtalker.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 新云软件.url
    .url