Overview

overview

7

Static

static

7

Cargo.The....ul.dll

windows7-x64

7

Cargo.The....ul.dll

windows10-2004-x64

7

牛游戏网.url

windows7-x64

1

牛游戏网.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    fd3ce449fc333547810d90ccae2df48b_JaffaCakes118

  • Size

    675KB

  • MD5

    fd3ce449fc333547810d90ccae2df48b

  • SHA1

    378f30a6ac46fe0165c83498844c696c73e1272e

  • SHA256

    6ceb859dbc0d9743245c72252474e895aafeb3bd8c503b08962b148adf0ef501

  • SHA512

    ad40222ba2f5f6786f0a3d77641eda3fd7379f37480ed8cd31e0a93d5a4b8f5a7767e397cf6a455adbd691b94034b1dd21f532abcc15c9ec655bb8efaf0d993c

  • SSDEEP

    12288:FZ7fwifIocG4D1suWCSqS1iXb/pDsQWvaX0JyJGQZGpL:FZ7wifzuDWxCSlypDsQIakgGQKL

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • fd3ce449fc333547810d90ccae2df48b_JaffaCakes118
    .rar
  • Cargo.The.Quest.For.Gravity.Crack-SKIDROW/bin/win32/paul.dll
    .dll windows:5 windows x86 arch:x86

    ffe13b7a7eae62632da7568ac633028d


    Headers

    Imports

    Exports

    Sections

  • Cargo.The.Quest.For.Gravity.Crack-SKIDROW/skidrow.nfo
  • newyx.txt
  • 使用说明.txt
  • 牛游戏网.url