Overview

overview

7

Static

static

7

76f781a17d...fe.exe

windows7-x64

7

76f781a17d...fe.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...et.dll

windows7-x64

3

$PLUGINSDI...et.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDIR/w7tbp.dll

windows7-x64

3

$PLUGINSDIR/w7tbp.dll

windows10-2004-x64

3

AdbWinApi.dll

windows7-x64

3

AdbWinApi.dll

windows10-2004-x64

3

AdbWinUsbApi.dll

windows7-x64

1

AdbWinUsbApi.dll

windows10-2004-x64

3

SrGui.exe

windows7-x64

1

SrGui.exe

windows10-2004-x64

3

Updtdb32.exe

windows7-x64

7

Updtdb32.exe

windows10-2004-x64

7

applist.dll

windows7-x64

4

applist.dll

windows10-2004-x64

1

lan_en.dll

windows7-x64

1

lan_en.dll

windows10-2004-x64

1

locate.exe

windows7-x64

3

locate.exe

windows10-2004-x64

3

tools/AdbWinApi.dll

windows7-x64

3

tools/AdbWinApi.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

Errors

Reason
could not process APK: zip: not a valid zip file

General

  • Target

    76f781a17dcd0af62f14bae232e7aafe

  • Size

    3.0MB

  • MD5

    76f781a17dcd0af62f14bae232e7aafe

  • SHA1

    68fe03b102ac233cae2cd2356620b1b2a4c2df25

  • SHA256

    41bbe0b99889efb5912ac26ed3e937a4ba542cfa6e82b616c08f0722fc20b22f

  • SHA512

    764c014640516fac488b8805031145f587c1b4bd8ed52f78acf0d8aba1a10197e4c8b3bdda188ab9732d122d4a702ef01d7b5025ed99c59e27135a07c7d927ea

  • SSDEEP

    49152:GxZJpjhaGwV7uMmo0DSI+7lAstMHMcSbvmkBiUDo2iOWz7f/3mP7gtwIJ:GbVlqKJrE7lvUMn+k7o2Mz72gtwIJ

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 14 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs
    installer

Files

  • 76f781a17dcd0af62f14bae232e7aafe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • $PLUGINSDIR/FindProcDLL.dll
    .dll windows:4 windows x86 arch:x86

    8df26927f8978d4eb40ff179c0aa961b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/Internet.dll
    .dll windows:4 windows x86 arch:x86

    04281f88c3d826e409dc7c24629e7efc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/KillProcDLL.dll
    .dll windows:4 windows x86 arch:x86

    153027ec3b10bcea606b777657dd3402


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    3f1149a3053980fe6b461521d2b55a2c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    1e2884056e655f2b7bc5a904e352fc80


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/w7tbp.dll
    .dll windows:4 windows x86 arch:x86

    fdb9d529772752ac356e92b3e3221b71


    Headers

    Imports

    Exports

    Sections

  • AdbWinApi.dll
    .dll windows:6 windows x86 arch:x86

    c64cac39044626770353879245ea25e4


    Headers

    Imports

    Exports

    Sections

  • AdbWinUsbApi.dll
    .dll windows:6 windows x86 arch:x86

    fda9f9f5f569ddd0dbf3ad8a275a2eb8


    Headers

    Imports

    Exports

    Sections

  • SrGui.exe.tmp
    .exe windows:5 windows x86 arch:x86

    e955ba562f0fbb4aceaed6afdfa972c2


    Code Sign

    Headers

    Imports

    Sections

  • Updtdb32.exe
    .exe windows:5 windows x86 arch:x86

    d99a5752375753c52947c49fd7d43e77


    Code Sign

    Headers

    Imports

    Sections

  • applist.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    f86cb791d4910baf3125f25cfc6ffe6a


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • lan_en.dll
    .dll windows:4 windows x86 arch:x86

    19eefa56116c60cb86b4f1d0a3e5f92d


    Code Sign

    Headers

    Imports

    Sections

  • locate.exe
    .exe windows:5 windows x86 arch:x86

    fa951f9976c9d36bb40b461ff3f05696


    Code Sign

    Headers

    Imports

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • tools/AdbWinApi.dll
    .dll windows:6 windows x86 arch:x86

    c64cac39044626770353879245ea25e4


    Headers

    Imports

    Exports

    Sections

  • tools/AdbWinUsbApi.dll
    .dll windows:6 windows x86 arch:x86

    fda9f9f5f569ddd0dbf3ad8a275a2eb8


    Headers

    Imports

    Exports

    Sections

  • tools/Superuser.apk
  • unlockroot.exe
    .exe windows:5 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections