Overview

overview

7

Static

static

7

ARCHPR_4.6...PR.chm

windows7-x64

1

ARCHPR_4.6...PR.chm

windows10-2004-x64

1

ARCHPR_4.6...PR.exe

windows7-x64

1

ARCHPR_4.6...PR.exe

windows10-2004-x64

1

ARCHPR_4.6...er.exe

windows7-x64

7

ARCHPR_4.6...er.exe

windows10-2004-x64

7

ARCHPR_4.6...gr.dll

windows7-x64

1

ARCHPR_4.6...gr.dll

windows10-2004-x64

1

ARCHPR_4.6...ey.dll

windows7-x64

1

ARCHPR_4.6...ey.dll

windows10-2004-x64

1

ARCHPR_4.6...eg.dll

windows7-x64

1

ARCHPR_4.6...eg.dll

windows10-2004-x64

1

ARCHPR_4.6...ml.dll

windows7-x64

1

ARCHPR_4.6...ml.dll

windows10-2004-x64

3

ARCHPR_4.6...��.exe

windows7-x64

3

ARCHPR_4.6...��.exe

windows10-2004-x64

3

ARCHPR_4.6...��.exe

windows7-x64

3

ARCHPR_4.6...��.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    4b07c93686659acaef1dcd37ef6271fa67333b43afc84c8b3038b1628b0cf96a

  • Size

    9.3MB

  • MD5

    eb9735d5a691ba4e6c6bd58de70d37bd

  • SHA1

    c9f6bce657c669ff322901f4018752b3d1bb061f

  • SHA256

    4b07c93686659acaef1dcd37ef6271fa67333b43afc84c8b3038b1628b0cf96a

  • SHA512

    f1b0303fec2bdc65d6d11fc6d27f57b5c3da517bb44b4f7eddb2a14ab12b7c674deef55c379cba5dda31a78f0c09751289afd8763ea1e4b1ebf47b99d1bc57d2

  • SSDEEP

    196608:h47n8aKhbo6tXlcO590v9ACcLKHUv28EVcSIlpIL+JLizNgl1YkZ6IxCB3eWA1Sp:KaboIXuO597+HUv2TweSJ+NKaakB35AQ

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs
    installer

Files

  • 4b07c93686659acaef1dcd37ef6271fa67333b43afc84c8b3038b1628b0cf96a
    .zip
  • ARCHPR_4.66.266.0_ɫ/ARCHPR.chm
    .chm
  • ARCHPR_4.66.266.0_ɫ/ARCHPR.exe
    .exe windows:6 windows x86

    3c6477217c292389a2c855fd3f266dc6


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ARCHPR_4.66.266.0_ɫ/ARCHPR.loader.exe
    .exe windows:4 windows x86


    Headers

    Sections

  • ARCHPR_4.66.266.0_ɫ/Common Files/elcom_devmgr.dll
    .dll windows:5 windows x86

    abbb2132caf194e4c3c7a1782ab375a0


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ARCHPR_4.66.266.0_ɫ/Common Files/elcom_key.dll
    .dll windows:5 windows x86


    Code Sign

    Headers

    Sections

  • ARCHPR_4.66.266.0_ɫ/Common Files/elcom_lang.xml
    .xml
  • ARCHPR_4.66.266.0_ɫ/Common Files/elcom_partners.exml
  • ARCHPR_4.66.266.0_ɫ/Common Files/elcom_reg.dll
    .dll windows:6 windows x86

    bc8a0c78b5a74baa1ef21a79f86cb3f5


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ARCHPR_4.66.266.0_ɫ/Common Files/elcom_xml.dll
    .dll windows:5 windows x86

    569574de5373db34c0c64dd78cb5e289


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ARCHPR_4.66.266.0_ɫ/archpr4.log
  • ARCHPR_4.66.266.0_ɫ/chinese_simp.lng
  • ARCHPR_4.66.266.0_ɫ/digits.chr
  • ARCHPR_4.66.266.0_ɫ/english.chr
  • ARCHPR_4.66.266.0_ɫ/english.dic
  • ARCHPR_4.66.266.0_ɫ/english.lng
  • ARCHPR_4.66.266.0_ɫ/german.chr
  • ARCHPR_4.66.266.0_ɫ/german.dic
  • ARCHPR_4.66.266.0_ɫ/german.lng
  • ARCHPR_4.66.266.0_ɫ/russian.chr
  • ARCHPR_4.66.266.0_ɫ/russian.dic
  • ARCHPR_4.66.266.0_ɫ/russian.lng
  • ARCHPR_4.66.266.0_ɫ/special.chr
  • ARCHPR_4.66.266.0_ɫ/ж.exe
    .exe windows:4 windows x86

    b1a57b635b23ffd553b3fd1e0960b2bd


    Headers

    Imports

    Sections

  • ARCHPR_4.66.266.0_ɫ/̻.exe
    .exe windows:4 windows x86

    b1a57b635b23ffd553b3fd1e0960b2bd


    Headers

    Imports

    Sections