Overview

overview

3

Static

static

3

PasswordsP...ro.vbs

windows7-x64

1

PasswordsP...ro.vbs

windows10-2004-x64

1

PasswordsP...-3.vbs

windows7-x64

1

PasswordsP...-3.vbs

windows10-2004-x64

1

PasswordsP...Me.chm

windows7-x64

1

PasswordsP...Me.chm

windows10-2004-x64

1

PasswordsP...x).dll

windows7-x64

3

PasswordsP...x).dll

windows10-2004-x64

3

PasswordsP...ls.dll

windows7-x64

3

PasswordsP...ls.dll

windows10-2004-x64

3

PasswordsP...28.dll

windows7-x64

3

PasswordsP...28.dll

windows10-2004-x64

3

PasswordsP...60.dll

windows7-x64

3

PasswordsP...60.dll

windows10-2004-x64

3

PasswordsP...92.dll

windows7-x64

3

PasswordsP...92.dll

windows10-2004-x64

3

PasswordsP...24.dll

windows7-x64

3

PasswordsP...24.dll

windows10-2004-x64

3

PasswordsP...56.dll

windows7-x64

3

PasswordsP...56.dll

windows10-2004-x64

3

PasswordsP...4).dll

windows7-x64

3

PasswordsP...4).dll

windows10-2004-x64

3

PasswordsP...C).dll

windows7-x64

3

PasswordsP...C).dll

windows10-2004-x64

3

PasswordsP...D4.dll

windows7-x64

3

PasswordsP...D4.dll

windows10-2004-x64

3

PasswordsP...R).dll

windows7-x64

3

PasswordsP...R).dll

windows10-2004-x64

3

PasswordsP...4).dll

windows7-x64

3

PasswordsP...4).dll

windows10-2004-x64

3

PasswordsP...C).dll

windows7-x64

3

PasswordsP...C).dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2544b6dd9a63da1f878cbd28f47fcecb

  • Size

    738KB

  • MD5

    2544b6dd9a63da1f878cbd28f47fcecb

  • SHA1

    2211dcec575180bed90b536af0e993eabe5d1498

  • SHA256

    60d52b6f02efe14923805749cf22d982f64b8746bdee0d80110a9002354acb2f

  • SHA512

    2a9d4ea1f309788d77f95f1c0c6d9f2dca31919a6d99c2b2568f15f12278d8d37182d6f659e092b5836f15a42a57bd0984be8625b2a87c73f80438ca00cab1ab

  • SSDEEP

    12288:t8C/hKmlqlqPUTwrlrDaaNZvBN1YS63f7WXIzgEYCODwQmRXsh:SCfqlA+BAZJNqSoWXIfJfR8

Score
3/10

Malware Config

Signatures

  • Unsigned PE 51 IoCs

    Checks for missing Authenticode signature.

Files

  • 2544b6dd9a63da1f878cbd28f47fcecb
    .rar
  • PasswordsPro-v2.4.2.1/Charset.txt
  • PasswordsPro-v2.4.2.1/Combinations.txt
  • PasswordsPro-v2.4.2.1/Descript.ion
  • PasswordsPro-v2.4.2.1/Dictionaries/Combinations.dic
  • PasswordsPro-v2.4.2.1/Dictionaries/InsidePro.dic
    .vbs
  • PasswordsPro-v2.4.2.1/Dictionaries/Latins_1-3.dic
    .vbs
  • PasswordsPro-v2.4.2.1/Dictionaries/Numbers_1-4.dic
  • PasswordsPro-v2.4.2.1/Dictionaries/Years.dic
  • PasswordsPro-v2.4.2.1/Modules/API/RAdmin_Sources.zip
    .zip
  • MD5.cpp
  • MD5.h
  • Modules.h
  • RAdmin.cpp
  • RAdmin.ncb
  • RAdmin.sln
  • RAdmin.suo
  • RAdmin.vcproj
    .xml
  • ReadMe.txt
  • stdafx.cpp
  • stdafx.h
  • PasswordsPro-v2.4.2.1/Modules/API/ReadMe.chm
    .chm
  • PasswordsPro-v2.4.2.1/Modules/DES(Unix).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/DES(Unix).txt
  • PasswordsPro-v2.4.2.1/Modules/Domain Cached Credentials.dll
    .dll windows:4 windows x86 arch:x86

    ab7184b2036a7d552cc25d8f6ba0d8af


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Domain Cached Credentials.txt
  • PasswordsPro-v2.4.2.1/Modules/Haval-128.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Haval-128.txt
  • PasswordsPro-v2.4.2.1/Modules/Haval-160.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Haval-160.txt
  • PasswordsPro-v2.4.2.1/Modules/Haval-192.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Haval-192.txt
  • PasswordsPro-v2.4.2.1/Modules/Haval-224.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Haval-224.txt
  • PasswordsPro-v2.4.2.1/Modules/Haval-256.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Haval-256.txt
  • PasswordsPro-v2.4.2.1/Modules/MD4(Base64).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MD4(Base64).txt
  • PasswordsPro-v2.4.2.1/Modules/MD4(HMAC).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MD4(HMAC).txt
  • PasswordsPro-v2.4.2.1/Modules/MD4.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MD4.txt
  • PasswordsPro-v2.4.2.1/Modules/MD5(APR).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MD5(APR).txt
  • PasswordsPro-v2.4.2.1/Modules/MD5(Base64).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MD5(Base64).txt
  • PasswordsPro-v2.4.2.1/Modules/MD5(HMAC).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MD5(HMAC).txt
  • PasswordsPro-v2.4.2.1/Modules/MD5(Unix).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MD5(Unix).txt
  • PasswordsPro-v2.4.2.1/Modules/MD5(phpBB3).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MD5(phpBB3).txt
  • PasswordsPro-v2.4.2.1/Modules/MD5.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MD5.txt
  • PasswordsPro-v2.4.2.1/Modules/MySQL.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MySQL.txt
  • PasswordsPro-v2.4.2.1/Modules/MySQL5.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/MySQL5.txt
  • PasswordsPro-v2.4.2.1/Modules/Other/Cisco PIX.zip
    .zip
  • MD5 (Cisco PIX).txt
  • pix_x86.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • readme.txt
  • PasswordsPro-v2.4.2.1/Modules/Other/Eggdrop.zip
    .zip
  • Blowfish (Eggdrop).txt
  • eggdrop.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • readme.txt
  • PasswordsPro-v2.4.2.1/Modules/Other/MD2.zip
    .zip
  • MD2.txt
  • md2.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • readme.txt
  • PasswordsPro-v2.4.2.1/Modules/Other/MS SQL.zip
    .zip
  • MSSQL5.txt
  • msqlx86.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • ppopt.jpg
    .jpg
  • readme.html
    .html
  • PasswordsPro-v2.4.2.1/Modules/Other/Oracle.zip
    .zip
  • DES (ORACLE).txt
  • SHA-1 (ORACLE).txt
  • oracle_desx86.dll
    .dll windows:4 windows x86 arch:x86

    901afd45d49f48702ea01f8e7c898333


    Headers

    Imports

    Exports

    Sections

  • oracle_sha1.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • readme.txt
  • PasswordsPro-v2.4.2.1/Modules/Other/RipeMD.zip
    .zip
  • RIPEMD-128.txt
  • RIPEMD-160.txt
  • RIPEMD-256.txt
  • rmd128.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • rmd160.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • rmd256.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Other/SHA-512 SSE.zip
    .zip
  • SHA-512.txt
  • readme.txt
  • sha512_sse2.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/RAdmin.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/RAdmin.txt
  • PasswordsPro-v2.4.2.1/Modules/SHA-1(Base64).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/SHA-1(Base64).txt
  • PasswordsPro-v2.4.2.1/Modules/SHA-1(HMAC).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/SHA-1(HMAC).txt
  • PasswordsPro-v2.4.2.1/Modules/SHA-1.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/SHA-1.txt
  • PasswordsPro-v2.4.2.1/Modules/SHA-256.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/SHA-256.txt
  • PasswordsPro-v2.4.2.1/Modules/SHA-384.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/SHA-384.txt
  • PasswordsPro-v2.4.2.1/Modules/SHA-512.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/SHA-512.txt
  • PasswordsPro-v2.4.2.1/Modules/Tiger-128.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Tiger-128.txt
  • PasswordsPro-v2.4.2.1/Modules/Tiger-160.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Tiger-160.txt
  • PasswordsPro-v2.4.2.1/Modules/Tiger-192.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Tiger-192.txt
  • PasswordsPro-v2.4.2.1/Modules/Whirlpool.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/Whirlpool.txt
  • PasswordsPro-v2.4.2.1/Modules/Whirlpool_MMX.dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/md5($pass.$salt).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/md5($pass.$salt).txt
  • PasswordsPro-v2.4.2.1/Modules/md5($salt.$pass).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/md5($salt.$pass).txt
  • PasswordsPro-v2.4.2.1/Modules/md5($salt.$pass.$salt).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/md5($salt.$pass.$salt).txt
  • PasswordsPro-v2.4.2.1/Modules/md5($salt.md5($pass)).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/md5($salt.md5($pass)).txt
  • PasswordsPro-v2.4.2.1/Modules/md5($salt.md5($salt.$pass)).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/md5($salt.md5($salt.$pass)).txt
  • PasswordsPro-v2.4.2.1/Modules/md5(md5($pass)).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/md5(md5($pass)).txt
  • PasswordsPro-v2.4.2.1/Modules/md5(md5($pass).$salt).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/md5(md5($pass).$salt).txt
  • PasswordsPro-v2.4.2.1/Modules/md5(md5($salt).$pass).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/md5(md5($salt).$pass).txt
  • PasswordsPro-v2.4.2.1/Modules/md5(md5($salt).md5($pass)).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/md5(md5($salt).md5($pass)).txt
  • PasswordsPro-v2.4.2.1/Modules/sha1($username.$pass).dll
    .dll windows:4 windows x86 arch:x86

    113d28cc3e73e9ab0a32e35444de8b59


    Headers

    Imports

    Exports

    Sections

  • PasswordsPro-v2.4.2.1/Modules/sha1($username.$pass).txt
  • PasswordsPro-v2.4.2.1/PasswordsPro.chm
    .chm
  • PasswordsPro-v2.4.2.1/PasswordsPro.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • PasswordsPro-v2.4.2.1/Rules.txt
  • PasswordsPro-v2.4.2.1/Russian.kbt
  • PasswordsPro-v2.4.2.1/新云软件.url
    .url