Overview

overview

7

Static

static

7

开心泡�...��.doc

windows7-x64

4

开心泡�...��.doc

windows10-2004-x64

1

开心泡�...��.url

windows7-x64

1

开心泡�...��.url

windows10-2004-x64

1

开心泡�...��.url

windows7-x64

1

开心泡�...��.url

windows10-2004-x64

1

开心泡�...��.exe

windows7-x64

7

开心泡�...��.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    42a007b4e33a82b84da6626786cccd27_JaffaCakes118

  • Size

    2.0MB

  • MD5

    42a007b4e33a82b84da6626786cccd27

  • SHA1

    903f96578eb4e34a35e64eaef14919d034269742

  • SHA256

    48809b31d476f5fe5fc9eb3b78a6bd57a28fc1a9b5153426d1a727a9ba465cfc

  • SHA512

    807549d022b5dcf5ff83845bf89cd26b0cb430ce41a98f2bb65bcad0dd92e160e60b53c2c84d44f3c16504aef0c407b72be7402ed09c0d262c827212e23b055a

  • SSDEEP

    49152:TAqwKXqWRFUXUmoluZQ8aLq2EsXkNAtIac87vrKQg664onJjjU:0oHFUholufa2MXkitE87vr5gTlw

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 42a007b4e33a82b84da6626786cccd27_JaffaCakes118
    .rar
  • 开心泡泡猫辅助瞄准器 v8.9.0.3/下载说明.txt
  • 开心泡泡猫辅助瞄准器 v8.9.0.3/使用说明.doc
    .doc windows office2003
  • 开心泡泡猫辅助瞄准器 v8.9.0.3/华彩联盟论坛.url
    .url
  • 开心泡泡猫辅助瞄准器 v8.9.0.3/华彩软件站-使用必读.url
    .url
  • 开心泡泡猫辅助瞄准器 v8.9.0.3/泡泡猫瞄准器.exe
    .exe windows:5 windows x86 arch:x86

    749fd2bfbf7efff897a90ebfc84d5956


    Headers

    Imports

    Sections

  • 开心泡泡猫辅助瞄准器 v8.9.0.3/相关截图/0.JPG
    .jpg