Overview

overview

1

Static

static

1

stubinst_p...ab.zip

windows7-x64

1

stubinst_p...ab.zip

windows10-2004-x64

1

stubinst_pkg_ja.cab

windows7-x64

1

stubinst_pkg_ja.cab

windows10-2004-x64

1

pages/imag...ts.xml

windows7-x64

1

pages/imag...ts.xml

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    stubinst_pkg_ja.cab.zip

  • Size

    2.3MB

  • MD5

    2b91630948fc306712dba6f18c2db607

  • SHA1

    3afeee9ca6f77047dc76da09877e46c976cd51fb

  • SHA256

    687611b2211d1e40d0008232088f215c8ac6dcea305fb73cf7429578ef59fa91

  • SHA512

    452b2dd13073751212bd4cfd4390c166f94abb7b4ea964a4f4236c9785b0e7400074b8342888a1a3d63d7a4b98b796ea32e6291976cbef70af4dcc08c71d42a9

  • SSDEEP

    49152:P0W4eL8e3xGsl8IEoCCTKtM1PyT59GJFP5hRNUXGEAF5SFq:vL8eBGsyIEoCCTKe1aT59EFnRNU2E5Fq

Score
1/10

Malware Config

Signatures

Files

  • stubinst_pkg_ja.cab.zip
    .zip

    Password: infected

  • stubinst_pkg_ja.cab
    .cab
  • inst_config/DotSetupSDK.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • inst_config/SymCCIS.dll
    .dll windows x86

    c3ec9de5a607346d463bedca1d2d3e06


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • inst_config/compat.dll
    .dll windows x86

    4c1ff78ee38acde5bdf77086d26b812e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • inst_config/gcapi_dll.dll
    .dll windows x86

    322d1490823c5f8bcd155ed2efae2c9f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • inst_config/gtapi.dll
    .dll windows x86

    8c590be21416f39c5c213372dbd2e42b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • inst_config/lowproc.exe
    .exe windows x86

    def124325b3b0c9a5ea5bfc40ca677e4


    Code Sign

    Headers

    Imports

    Sections

  • inst_config/rncompat.dll
    .dll windows x86

    d3d8c5cda4527adba168d9a85726777e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • inst_config/rpusdk.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • pages/chr_reoffer/chr_chrome.png
    .png
  • pages/chr_reoffer/chr_logo.gif
    .gif
  • pages/chr_reoffer/chrome.css
  • pages/chr_reoffer/index.html
    .html .js
  • pages/chr_reoffer/logger.html
  • pages/chr_reoffer/strings.js
    .js
  • pages/chrome/chr_chrome.png
    .png
  • pages/chrome/chr_logo.gif
    .gif
  • pages/chrome/chrome.css
  • pages/chrome/index.html
    .html .js
  • pages/chrome/logger.html
  • pages/chrome/strings.js
    .js
  • pages/common/functions.js
  • pages/common/jquery-ui.css
  • pages/common/jquery-ui.js
    .js
  • pages/common/jquery.min.js
    .js
  • pages/eula/index.html
    .html .js
  • pages/eula/indexNewUser.html
    .html .js
  • pages/eula/indexNoSafr.html
    .html .js
  • pages/eula/indexOptIn.html
    .html .js
  • pages/eula/logger.html
  • pages/eula/page.css
  • pages/eula/strings.js
    .js
  • pages/eula/welcome.css
  • pages/eula/welcomeOptIn.css
  • pages/gtb/gtb.css
  • pages/gtb/gtb_graphic.png
    .png
  • pages/gtb/gtb_logo.png
    .png
  • pages/gtb/index.html
    .html .js
  • pages/gtb/jquery.min.js
    .js
  • pages/gtb/strings.js
    .js
  • pages/gtbchr/advance.html
    .html
  • pages/gtbchr/chr_chrome.png
    .png
  • pages/gtbchr/chr_chrome1.jpg
    .jpg
  • pages/gtbchr/chr_logo.gif
    .gif
  • pages/gtbchr/chr_logo.png
    .png
  • pages/gtbchr/chrome.css
  • pages/gtbchr/index.html
    .html .js
  • pages/gtbchr/jquery.min.js
    .js
  • pages/gtbchr/logger.html
  • pages/gtbchr/strings.js
    .js
  • pages/images/1_newlook.png
    .png
  • pages/images/2_downloads.png
    .png
  • pages/images/3_peoplesearch.png
    .png
  • pages/images/4_whozthat.png
    .png
  • pages/images/5_discover.png
    .png
  • pages/images/6_updgrade.png
    .png
  • pages/images/7_mobile.png
    .png
  • pages/images/Close1.png
    .png
  • pages/images/Close2.png
    .png
  • pages/images/Close4.png
    .png
  • pages/images/assets.svg
    .xml
  • pages/images/btn_accept_enabled.png
    .png
  • pages/images/btn_agreeAndContinue_133x20.png
    .png
  • pages/images/btn_back_enabled.png
    .png
  • pages/images/btn_blue.png
    .png
  • pages/images/btn_blue176.png
    .png
  • pages/images/btn_blue190.png
    .png
  • pages/images/btn_blue230.png
    .png
  • pages/images/btn_clear.png
    .png
  • pages/images/btn_continue_enabled.png
    .png
  • pages/images/btn_light_blue.png
    .png
  • pages/images/btn_next_enabled.png
    .png
  • pages/images/btn_options_enabled.png
    .png
  • pages/images/bullet.png
    .png
  • pages/images/bullet_blue.png
    .png
  • pages/images/bullet_empty.png
    .png
  • pages/images/checkmark.png
    .png
  • pages/images/dot_full.png
    .png
  • pages/images/dots_empty.png
    .png
  • pages/images/headerBackground.png
    .png
  • pages/images/install_progressbar_blue.png
    .png
  • pages/images/install_progressbar_grey.png
    .png
  • pages/images/off.png
    .png
  • pages/images/on.png
    .png
  • pages/images/progress_downloader.png
    .png
  • pages/images/progress_newlook.png
    .png
  • pages/images/progress_peoplesearch.png
    .png
  • pages/images/progress_premium.png
    .png
  • pages/images/progress_unloaded.gif
    .gif
  • pages/images/realLogo.png
    .png
  • pages/images/realLogo2.png
    .png
  • pages/images/realLogo_no20.png
    .png
  • pages/images/realLogo_rp16_welcome.png
    .png
  • pages/images/realLogo_welcome.png
    .png
  • pages/images/realLogo_welcome_no20.png
    .png
  • pages/images/realLogo_welcome_with20.png
    .png
  • pages/images/realLogo_with20.png
    .png
  • pages/images/subtitles.png
    .png
  • pages/images/uh_Close1.png
    .png
  • pages/images/uh_Close2.png
    .png
  • pages/images/uh_Close4.png
    .png
  • pages/images/white.png
    .png
  • pages/inst_complete/index.html
    .html .js
  • pages/inst_complete/index2.html
    .html .js
  • pages/inst_complete/jquery.min.js
    .js
  • pages/inst_complete/page.css
  • pages/inst_complete/player_behav.html
    .html .js
  • pages/inst_complete/player_rot1.html
    .html .js
  • pages/inst_complete/player_rot2.html
    .html .js
  • pages/iron/index.html
    .html .js
  • pages/iron/iron.css
  • pages/iron/strings.js
    .js
  • pages/iron/waiting-spinner.gif
    .gif
  • pages/king/background.png
    .png
  • pages/king/index.html
    .js
  • pages/king/king.css
  • pages/king/strings.js
    .js
  • pages/no_firstrun/index.html
    .html
  • pages/no_firstrun/page.css
  • pages/nse/NortonLifeLock-Horizontal-Light.png
    .png
  • pages/nse/NortonLifeLock-Vertical-Light.png
    .png
  • pages/nse/Norton_logo.png
    .png
  • pages/nse/Norton_rotation_logo.png
    .png
  • pages/nse/RotationStrings.js
    .js
  • pages/nse/bodytext.png
    .png
  • pages/nse/index.html
    .js
  • pages/nse/indexRotationA.html
    .js
  • pages/nse/indexRotationB.html
    .js
  • pages/nse/indexRotationC.html
    .js
  • pages/nse/norton.css
  • pages/nse/nortonLogo.png
    .png
  • pages/nse/nortonRotation.css
  • pages/nse/rotation_A_img.png
    .png
  • pages/nse/rotation_B_img.png
    .png
  • pages/nse/rotation_C_img.png
    .png
  • pages/nse/strings.js
    .js
  • pages/nss/NortonLifeLock-Horizontal-Light.png
    .png
  • pages/nss/NortonLifeLock-Vertical-Light.png
    .png
  • pages/nss/Norton_logo.png
    .png
  • pages/nss/bodytext.png
    .png
  • pages/nss/header.png
    .png
  • pages/nss/index.html
    .js
  • pages/nss/indexRotation.html
    .js
  • pages/nss/norton.css
  • pages/nss/nortonLogo.png
    .png
  • pages/nss/nortonRotation.css
  • pages/nss/strings.js
    .js
  • pages/nss/stringsRotation.js
    .js
  • pages/post_install/index.html
    .html .js
  • pages/post_install/post_install.css
  • pages/post_install/strings.js
    .js
  • pages/progress/index2.html
    .html .js
  • pages/progress/index3.html
    .html .js
  • pages/progress/index7.html
    .html .js
  • pages/progress/logger.html
  • pages/progress/percent_bar.js
    .js
  • pages/progress/progress.css
  • pages/progress/strings.js
    .js
  • pages/psp/index.html
    .js
  • pages/psp/psp.css
  • pages/psp/pspLogo.png
    .png
  • pages/psp/pspUI.png
    .png
  • pages/psp/strings.js
    .js
  • pages/rise/index.html
    .html .js
  • pages/rise/index_uninstall.html
    .js
  • pages/rise/rise.css
  • pages/rise/strings.js
    .js
  • pages/rise/unstrings.js
    .js
  • pages/rise/waiting-spinner.gif
    .gif
  • pages/uh_prompt/b_bullet.png
    .png
  • pages/uh_prompt/b_bullet_checkbox.png
    .png
  • pages/uh_prompt/background.png
    .png
  • pages/uh_prompt/background_white.png
    .png
  • pages/uh_prompt/btn_later_enabled.png
    .png
  • pages/uh_prompt/btn_update_enabled.png
    .png
  • pages/uh_prompt/index.html
    .html .js
  • pages/uh_prompt/logger.html
  • pages/uh_prompt/r_bullet.png
    .png
  • pages/uh_prompt/rp-logo.png
    .png
  • pages/uh_prompt/strings.js
    .js
  • pages/uh_prompt/uh_prompt.css
  • pages/wzip/index32.html
    .js
  • pages/wzip/index64.html
    .js
  • pages/wzip/strings.js
    .js
  • pages/wzip/wzip.css
  • pages/wzip/wzipLogo.png
    .png
  • skin/browser/bottom.png
    .png
  • skin/browser/bottom_left.png
    .png
  • skin/browser/bottom_right.png
    .png
  • skin/browser/center.png
    .png
  • skin/browser/left.png
    .png
  • skin/browser/right.png
    .png
  • skin/browser/top.png
    .png
  • skin/browser/top_left.png
    .png
  • skin/browser/top_right.png
    .png
  • skin/button_dn.png
    .png
  • skin/button_ov.png
    .png
  • skin/button_up.png
    .png
  • skin/dialog/bottom.png
    .png
  • skin/dialog/bottom_left.png
    .png
  • skin/dialog/bottom_right.png
    .png
  • skin/dialog/center.png
    .png
  • skin/dialog/close.png
    .png
  • skin/dialog/left.png
    .png
  • skin/dialog/right.png
    .png
  • skin/dialog/swoosh.png
    .jpg
  • skin/dialog/swoosh2.png
    .png
  • skin/dialog/top.png
    .png
  • skin/dialog/top_left.png
    .png
  • skin/dialog/top_right.png
    .png
  • skin/icon_alert.bmp
  • skin/icon_careful.bmp
  • skin/icon_info.bmp
  • skin/icon_info2.bmp
  • version.ini