Overview

overview

7

Static

static

7

BaiduEdito..._2.exe

windows7-x64

7

BaiduEdito..._2.exe

windows10-2004-x64

4

$PLUGINSDI...ol.dll

windows7-x64

7

$PLUGINSDI...ol.dll

windows10-2004-x64

7

$PLUGINSDIR/CLR.dll

windows7-x64

1

$PLUGINSDIR/CLR.dll

windows10-2004-x64

1

$PLUGINSDI...ig.dll

windows7-x64

3

$PLUGINSDI...ig.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

$PLUGINSDIR/ip.dll

windows7-x64

3

$PLUGINSDIR/ip.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDI...ML.dll

windows7-x64

3

$PLUGINSDI...ML.dll

windows10-2004-x64

3

$PLUGINSDI...og.dll

windows7-x64

3

$PLUGINSDI...og.dll

windows10-2004-x64

3

$PLUGINSDIR/time.dll

windows7-x64

3

$PLUGINSDIR/time.dll

windows10-2004-x64

3

7za.exe

windows7-x64

1

7za.exe

windows10-2004-x64

1

BaiduEdito...on.dll

windows7-x64

1

BaiduEdito...on.dll

windows10-2004-x64

1

Resubmissions

14-02-2024 10:18

240214-mcaeaafg4y 7

14-02-2024 10:16

240214-masg3sgg75 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    BaiduEditor(Offline)_6_5_5_2.exe

  • Size

    22.0MB

  • MD5

    55c30515dc8d564651d7d35fcd9ff97d

  • SHA1

    02eafdb262eb7b43e9997c6f9924c2f4ff4f1285

  • SHA256

    9868e15ce5dee4ac08bbb900151fae026a036f5f80c9b6bc5f8746b64002aec5

  • SHA512

    c432bbb95b0392c934bf035b6a7a7a5efd465ac79909a3ccea6999275840d5dc6060e297c6425aac3f36b867fdb3e506f5205808516675d3b6da6269d6ee4a64

  • SSDEEP

    393216:3GTzJ8ZZxCywDCgXjsB6Uyk8GpF+ANND9aBqvEIlyhz/w9+MpJCL1WdFmW5cMFSz:EKZsugzsEUySD+AT89Y8xm1FuS451ADk

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 13 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs
    installer

Files

  • BaiduEditor(Offline)_6_5_5_2.exe
    .exe windows:5 windows x86 arch:x86

    e42c0ba5350d48c9fb666ff52855f8ec


    Code Sign

    Headers

    Imports

    Sections

  • $APPDATA/BaiduEditor/App/Install/BaiduEditor.FC.NET4.zip
    .7z
  • BaiduEditor.FC.App.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.FC.App.dll.config
  • BaiduEditor.FC.Common.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.FC.DataAccess.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.FC.Design.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.FC.SEMObjectManagement.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.FC.SEMObjects.Design.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.FC.Search.AdManagement.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.FC.Search.Presentation.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.FC.Shared.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.FC.VirtualLoading.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.FC.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BceSdkDotNet.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • ConversionAnalyse/TemplateFilterInitData.xml
    .xml
  • ConversionAnalyse/ThirdPartToolExample/KuaiShangTong.mht
    .eml
  • attachment-2
    .thmx office2007
  • attachment-3.xml
    .xml
  • attachment-8.xml
  • email-html-1.txt
  • ConversionAnalyse/ThirdPartToolExample/LeYu.mht
    .eml
  • attachment-2
    .thmx office2007
  • attachment-3.xml
    .xml
  • attachment-8.xml
  • email-html-1.txt
  • ConversionAnalyse/ThirdPartToolExample/Other.mht
    .eml
  • attachment-2
    .thmx office2007
  • attachment-3.xml
    .xml
  • attachment-9.xml
  • email-html-1.txt
  • ConversionAnalyse/ThirdPartToolExample/ShangQiao.mht
    .eml
  • attachment-2
    .thmx office2007
  • attachment-3.xml
    .xml
  • attachment-8.xml
  • email-html-1.txt
  • ConversionAnalyse/ThirdPartToolExample/ShangWuTong.mht
    .eml
  • attachment-2
    .thmx office2007
  • attachment-3.xml
    .xml
  • attachment-8.xml
  • email-html-1.txt
  • ConversionAnalyse/ThirdPartToolExample/WuSanKuaiFu.mht
    .eml
  • attachment-2
    .thmx office2007
  • attachment-3.xml
    .xml
  • attachment-8.xml
  • email-html-1.txt
  • DB/BaiduSEM.s3db
  • ExcelDataReader.DataSet.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • ExcelDataReader.DataSet.xml
    .xml
  • ExcelDataReader.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • ExcelDataReader.xml
    .xml
  • Img/Ad_Preview_Mobile_Defaul_Image.png
    .png
  • Img/Ad_Preview_PC_Defaul_Image.png
    .png
  • Img/phone_icon_mobile.png
    .png
  • Img/phone_icon_pp.png
    .png
  • Microsoft.Practices.Unity.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Microsoft.Practices.Unity.xml
    .xml
  • NLog.config
  • config.xml
    .xml
  • en-US/BaiduEditor.FC.App.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.FC.Common.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.FC.DataAccess.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.FC.Design.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.FC.SEMObjectManagement.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.FC.SEMObjects.Design.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.FC.Search.AdManagement.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.FC.Search.Presentation.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.FC.Shared.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.FC.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • hyjiacan.py4n.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • hyjiacan.py4n.xml
    .xml
  • log4net.xml
    .xml .vbs polyglot
  • protobuf-net.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • version_info.mht
    .eml
  • attachment-2
    .thmx office2007
  • attachment-3.xml
    .xml
  • attachment-7.xml
  • email-html-1.txt
  • email-html-5.txt
  • zh-CN/BaiduEditor.FC.Design.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • zh-CN/BaiduEditor.FC.SEMObjects.Design.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • zh-CN/BaiduEditor.FC.Search.AdManagement.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • zh-CN/BaiduEditor.FC.Shared.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $APPDATA/BaiduEditor/App/Install/BaiduEditor.Feed.NET4.zip
    .7z
  • $PLUGINSDIR/AccessControl.dll
    .dll windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/CLR.dll
    .dll windows:4 windows x86 arch:x86

    87a71102c130c1a5bb9e264804d9972f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/IpConfig.dll
    .dll windows:5 windows x86 arch:x86

    a9988f98d52a3c7d16228f87844f85ea


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:5 windows x86 arch:x86

    3424597c14de8dd746090e1d0085bdea


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UserInfo.dll
    .dll windows:4 windows x86 arch:x86

    afa8e526425f3585465337467d0b5909


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    5bdcdde5acd7b395f3f3d19ebbb8c6cd


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/install-header1.bmp
  • $PLUGINSDIR/install-header2.bmp
  • $PLUGINSDIR/install-header3.bmp
  • $PLUGINSDIR/install-header4.bmp
  • $PLUGINSDIR/install-header5.bmp
  • $PLUGINSDIR/ip.dll
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    1e2884056e655f2b7bc5a904e352fc80


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:5 windows x86 arch:x86

    a49b0342971aa199fc6349725b90146d


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisXML.dll
    .dll windows:4 windows x86 arch:x86

    177dccc4d0323e428824818efd241cc7


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsislog.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/time.dll
    .dll windows:4 windows x86 arch:x86

    2e3a4d1f132aea64d421c1e936bcc407


    Headers

    Imports

    Exports

    Sections

  • 7za.exe
    .exe windows:4 windows x86 arch:x86

    15847eb10d7d06dcd5980e8a9b786fd6


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.Application.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.AutoUpdate.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.Business.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.Common.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.ControlLib.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.Framework.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.Interface.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.ManagementCenter.Design.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.ManagementCenter.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.Platform.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.PlatformCore.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Code Sign

    Headers

    Imports

    Sections

  • BaiduEditor.exe.config
    .xml
  • BceSdkDotNet.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • DB/BaiduPlatform.s3db
  • Img/sublink_icon.png
    .png
  • Img/update.ico
  • Img/updatebanner.bmp
  • Microsoft.Practices.Unity.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • NLog.config
  • NLog.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Newtonsoft.Json.xml
    .xml
  • System.Data.SQLite.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • autoupdate.ini
  • bdaucommon.dll
    .dll windows:5 windows x86 arch:x86

    f972401f4ca4af2f8a88aa01d33091df


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • bdaucommon_x64.dll
    .dll windows:5 windows x64 arch:x64

    c28ef0edb92c3e6a4443d4d479ac1458


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • bdupdate.exe
    .exe windows:5 windows x86 arch:x86

    0b17fbbfcd377cd0a9981adf5e1e5438


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.Common.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.ControlLib.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.ManagementCenter.Design.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • en-US/BaiduEditor.ManagementCenter.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • log4net.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • protobuf-net.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • version.mht
    .eml
  • x64/SQLite.Interop.dll
    .dll windows:5 windows x64 arch:x64

    6f6d0bdadb839e140d7a41e8d1e05c22


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • x86/SQLite.Interop.dll
    .dll windows:5 windows x86 arch:x86

    43cf4064308c8cffa2acc646c51eabf0


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • zh-CN/BaiduEditor.Common.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • zh-CN/BaiduEditor.ControlLib.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • zh-CN/BaiduEditor.ManagementCenter.Design.resources.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections