Overview

overview

7

Static

static

7

773d1567ea...2a.exe

windows7-x64

3

773d1567ea...2a.exe

windows10-2004-x64

3

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$PLUGINSDI...SE.dll

windows7-x64

7

$PLUGINSDI...SE.dll

windows10-2004-x64

7

$PLUGINSDI...1.html

windows7-x64

1

$PLUGINSDI...1.html

windows10-2004-x64

1

$PLUGINSDI...2.html

windows7-x64

1

$PLUGINSDI...2.html

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    773d1567eae68217f25752300a73f32a

  • Size

    705KB

  • MD5

    773d1567eae68217f25752300a73f32a

  • SHA1

    6d4ad3648e8f8804bbb4919405eb5ec56a677452

  • SHA256

    3eb4e2d70960f133dc92bcbb315c05f99876a6bb5c56acd5e754187976a44e01

  • SHA512

    9c327b9ea877dfb8a282676d96928d8554f41d312715cafcb5baaec2fb9c522d44d7cc6252cd50c4560ac5761fbbdb0aebbbe16d895de52f7a027b453bb99cb8

  • SSDEEP

    12288:BS5suId3nxRoWcXvl/rbIA0rtw7KGMN0ZeOKNR4vrrNdvqzD6OQuK5w:BS5su6RoWcfl//uiMNaPyR4vHHyzDjQ6

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 773d1567eae68217f25752300a73f32a
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/0.bmp
  • $PLUGINSDIR/01.png
    .png
  • $PLUGINSDIR/02.png
    .png
  • $PLUGINSDIR/03.png
    .png
  • $PLUGINSDIR/04.png
    .png
  • $PLUGINSDIR/AdvSplash.dll
    .dll windows:4 windows x86 arch:x86

    741b6bafe355b63a372d737b30543a95


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/Schedule1.bmp
  • $PLUGINSDIR/Schedule2.bmp
  • $PLUGINSDIR/Schedule3.bmp
  • $PLUGINSDIR/Schedule4.bmp
  • $PLUGINSDIR/Skin.zip
    .zip
  • skin/Thumbs.db
  • skin/button_disable.bmp
  • skin/button_disable.png
    .png
  • skin/button_down.bmp
  • skin/button_down.png
    .png
  • skin/button_focus.png
    .png
  • skin/button_hot.bmp
  • skin/button_hot.png
    .png
  • skin/button_normal.png
    .png
  • skin/checkbox_hot.png
    .png
  • skin/checkbox_hot_select.png
    .png
  • skin/checkbox_nor.png
    .png
  • skin/checkbox_nor_select.png
    .png
  • skin/combobox_down.bmp
  • skin/combobox_hot.bmp
  • skin/combobox_normal.bmp
  • skin/frame_btn_close_disable.bmp
  • skin/frame_btn_close_down.png
    .png
  • skin/frame_btn_close_hot.png
    .png
  • skin/frame_btn_close_normal.png
    .png
  • skin/frame_btn_max_disable.bmp
  • skin/frame_btn_max_down.bmp
  • skin/frame_btn_max_hot.bmp
  • skin/frame_btn_max_normal.bmp
  • skin/frame_btn_min_disable.bmp
  • skin/frame_btn_min_down.bmp
  • skin/frame_btn_min_hot.bmp
  • skin/frame_btn_min_normal.bmp
  • skin/frame_btn_restore_disable.bmp
  • skin/frame_btn_restore_down.bmp
  • skin/frame_btn_restore_hot.bmp
  • skin/frame_btn_restore_normal.bmp
  • skin/headerctrl_Sperator.bmp
  • skin/headerctrl_down.bmp
  • skin/headerctrl_hot.bmp
  • skin/headerctrl_normal.bmp
  • skin/listctrl_item_select.bmp
  • skin/menu_bar_back.bmp
  • skin/menu_bar_down.bmp
  • skin/menu_item_background.bmp
  • skin/menu_item_hot.bmp
  • skin/menu_item_pup.bmp
  • skin/menu_item_seperator.bmp
  • skin/menubtn_close.bmp
  • skin/menubtn_min.bmp
  • skin/menubtn_store.bmp
  • skin/radiobtn_hot.bmp
  • skin/radiobtn_hot_select.bmp
  • skin/radiobtn_nor.bmp
  • skin/radiobtn_nor_select.bmp
  • skin/scroll.bmp
  • skin/scroll~.bmp
  • skin/set_clider_channel_active.bmp
  • skin/set_clider_channel_normal.bmp
  • skin/set_slider_thumb_down.bmp
  • skin/set_slider_thumb_hot.bmp
  • skin/set_slider_thumb_normal.bmp
  • skin/sizelogo.bmp
  • skin/spin_bottom_disable.bmp
  • skin/spin_bottom_down.bmp
  • skin/spin_bottom_normal.bmp
  • skin/spin_bottom_over.bmp
  • skin/spin_left_disable.bmp
  • skin/spin_left_down.bmp
  • skin/spin_left_normal.bmp
  • skin/spin_left_over.bmp
  • skin/spin_lower_down.bmp
  • skin/spin_lower_hot.bmp
  • skin/spin_lower_normal.bmp
  • skin/spin_right_disable.bmp
  • skin/spin_right_down.bmp
  • skin/spin_right_normal.bmp
  • skin/spin_right_over.bmp
  • skin/spin_top_disable.bmp
  • skin/spin_top_down.bmp
  • skin/spin_top_normal.bmp
  • skin/spin_top_over.bmp
  • skin/spin_upper_down.bmp
  • skin/spin_upper_hot.bmp
  • skin/spin_upper_normal.bmp
  • skin/standard_progress_active.bmp
  • skin/standard_progress_active.png
    .png
  • skin/standard_progress_active_v.bmp
  • skin/standard_progress_normal.bmp
  • skin/standard_progress_normal_v.bmp
  • skin/statusbar_back.bmp
  • skin/statusbar_backv.bmp
  • skin/tab_bottom_checked.bmp
  • skin/tab_bottom_normal.bmp
  • skin/tab_left_checked.bmp
  • skin/tab_left_normal.bmp
  • skin/tab_right_checked.bmp
  • skin/tab_right_normal.bmp
  • skin/tab_top_checked.bmp
  • skin/tab_top_normal.bmp
  • skin/toolbar_btn_down.bmp
  • skin/toolbar_btn_hot.bmp
  • skin/toolbar_drop.bmp
  • skin/toolbar_dropv.bmp
  • skin/toolbar_seperator.bmp
  • skin/toolbar_seperatorv.bmp
  • skin/windowBk.bmp
  • skinse.xml
  • $PLUGINSDIR/SkinSE.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/Splash_start.bmp
  • $PLUGINSDIR/ToggleImages1.html
    .html
  • $PLUGINSDIR/ToggleImages2.html
    .html .js polyglot
  • $PLUGINSDIR/icon.bmp
  • $PLUGINSDIR/icon1.bmp
  • $PLUGINSDIR/icon2.bmp