Overview

overview

7

Static

static

7

lkwgxffz/X...��.url

windows7-x64

1

lkwgxffz/X...��.url

windows10-2004-x64

1

lkwgxffz/�....2.exe

windows7-x64

7

lkwgxffz/�....2.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    11562ab196cd5309bd6a01c06a888838_JaffaCakes118

  • Size

    2.2MB

  • MD5

    11562ab196cd5309bd6a01c06a888838

  • SHA1

    dcb41c6a4bf4c8b1576906a8112bd7829eef57f3

  • SHA256

    4950de3e06f4a8b50218c4533211de6c996f2d0d6b326e9831e71b1acf00d988

  • SHA512

    7af9536da6a843b52333af1683a001f7fd2262c498c63740e65561b6e14f9465b5f8866a449cc4f7b2f38f0746d8f87a992377691bf842a7a26da16ef5b9c45b

  • SSDEEP

    49152:3wd0UPZCYo6VPHFnWWPI0mxYMFnMU+iOLmg+f5wvtuy:380uCb+lO0OleiO6wvUy

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 11562ab196cd5309bd6a01c06a888838_JaffaCakes118
    .zip
  • lkwgxffz/XPϵͳ֮.url
    .url
  • lkwgxffz/ʹ˵.txt
  • lkwgxffz/縨V3.2.exe
    .exe windows:5 windows x86 arch:x86

    c29d2b1b528d7f68243b259573549232


    Headers

    Imports

    Sections