Overview

overview

7

Static

static

7

QQ装逼�....9.exe

windows7-x64

7

QQ装逼�....9.exe

windows10-2004-x64

7

河源下�...cn.url

windows7-x64

1

河源下�...cn.url

windows10-2004-x64

1

淘宝热卖.url

windows7-x64

1

淘宝热卖.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    f06e28b3c3971f85b1a73dd17560f883_JaffaCakes118

  • Size

    6.2MB

  • MD5

    f06e28b3c3971f85b1a73dd17560f883

  • SHA1

    d7eafe8a57e798c0b7163d083b71ee0a8ec6c800

  • SHA256

    e84f840dc8985d8052f3b1c93185b2b7b3f04715ebb4a9496d994019fcb219df

  • SHA512

    6be3f7d7f88697ea7718956c369225f84c1fe69784de96f6e140dc5c17ba8e7a683c531a1df44e151af1d570c02eabcbf8ed2f867d87038f25789d910239d4b6

  • SSDEEP

    196608:Ng75o8Feo5deadg5zIR1svu1OjdqnMBL1Pu8p7N:N8o8RfduO1H8EMrP5BN

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • f06e28b3c3971f85b1a73dd17560f883_JaffaCakes118
    .rar
  • QQ装逼工具箱0.9.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 河源下载站-cngr.cn.url
    .url
  • 淘宝热卖.url
    .url