Overview

overview

6

Static

static

3

yx_bd-xuny...by.exe

windows7-x64

3

yx_bd-xuny...by.exe

windows10-2004-x64

3

yx_bd-xuny...cn.url

windows7-x64

6

yx_bd-xuny...cn.url

windows10-2004-x64

3

yx_bd-xuny...��.htm

windows7-x64

3

yx_bd-xuny...��.htm

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    446a30f780886cb0e74ecdf6e16a134c_JaffaCakes118

  • Size

    831KB

  • MD5

    446a30f780886cb0e74ecdf6e16a134c

  • SHA1

    c35f3f997cd486d8526dc2dada655da3fec2b178

  • SHA256

    413b6cb331d386f5eb5c099dbddbde0640d2f39cacdae7bb5693e65c93e89ae2

  • SHA512

    9963993579ed4912733300f37561f02cf3c29a98c6adbfb5e55a320953f269c966e6fb34faf8a93894bd94e339468a1388e959f7c1c95bc6bf2060b9d5ed654a

  • SSDEEP

    24576:pIX0Ld4h7ATb3fSkh/idmIcOAciYElqNxrGm7Pi:c05iATLSQqmIwcdYwGm76

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 446a30f780886cb0e74ecdf6e16a134c_JaffaCakes118
    .rar
  • yx_bd-xunyou2012-pj_hicode/Xunyou2010.Cracked.By.Baby.exe
    .exe windows:4 windows x86 arch:x86

    b3082620fcaaff56ea0144da2aed839e


    Headers

    Imports

    Sections

  • yx_bd-xunyou2012-pj_hicode/hicode.cn.url
    .url
  • yx_bd-xunyou2012-pj_hicode/双击注册.reg
  • yx_bd-xunyou2012-pj_hicode/请先读我.htm
    .html