Overview

overview

7

Static

static

3

1-youtube_viewer.exe

windows7-x64

7

1-youtube_viewer.exe

windows10-2004-x64

7

SciLexer.exe

windows7-x64

1

SciLexer.exe

windows10-2004-x64

1

core32.exe

windows7-x64

7

core32.exe

windows10-2004-x64

7

data/inject.js

windows7-x64

1

data/inject.js

windows10-2004-x64

1

data/optio...x.html

windows7-x64

1

data/optio...x.html

windows10-2004-x64

1

data/options/index.js

windows7-x64

1

data/options/index.js

windows10-2004-x64

1

worker.js

windows7-x64

1

worker.js

windows10-2004-x64

1

audiocontext.js

windows7-x64

1

audiocontext.js

windows10-2004-x64

1

canvas.js

windows7-x64

1

canvas.js

windows10-2004-x64

1

font.js

windows7-x64

1

font.js

windows10-2004-x64

1

webgl.js

windows7-x64

1

webgl.js

windows10-2004-x64

1

background.js

windows7-x64

1

background.js

windows10-2004-x64

1

data/inject.js

windows7-x64

1

data/inject.js

windows10-2004-x64

1

data/offsets.js

windows7-x64

1

data/offsets.js

windows10-2004-x64

1

data/optio...x.html

windows7-x64

1

data/optio...x.html

windows10-2004-x64

1

data/options/index.js

windows7-x64

1

data/options/index.js

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    YouTube-Viewer-1-7-0.zip

  • Size

    22.8MB

  • MD5

    0217b7e508b049f8dd3f7a4a68b02fe4

  • SHA1

    99684ca97577e1b8273fbd8fb6775d0d6df65297

  • SHA256

    a2dcbb79b1b6ff54d27703ca1aea2ddb12365bd4f3100d83d113620be75f66b6

  • SHA512

    ed96f292180e68530c2b854c56e91a9b129327ff4cbdbd8f6e2a1bac92731d9c020a9879fb1eaded669dc07272e75170cbeedd58e4311492b7245882736a31f6

  • SSDEEP

    393216:tIjEPGyC+JwGPm3n8tKm37ej1k3a1/ThGzmnAekA768ZIb7SxqaAicqxlHZVw:wEPvjGGPcn8tv7QUq/ThwmnprG8ZA7S0

Score
3/10
pyinstaller

Malware Config

Signatures

  • Detects Pyinstaller 2 IoCs
    pyinstaller
  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • YouTube-Viewer-1-7-0.zip
    .zip
  • 1-youtube_viewer.exe
    .exe windows:6 windows x86 arch:x86

    a283dafca83c0a2a8ece9859011b15c6


    Headers

    Imports

    Sections

  • Readme.txt
  • SciLexer.bin
    .exe windows:6 windows x86 arch:x86

    b66f87cf58494faf62e606c7906acafe


    Headers

    Imports

    Sections

  • core32.lib
    .exe windows:5 windows x64 arch:x64

    d170e2e5adcfc4c271f2eb78a565305e


    Headers

    Imports

    Sections

  • youtube_viewer.pyc
    .js
  • extension\always_active.zip
    .zip
  • _locales/bg/messages.json
  • _locales/cs/messages.json
  • _locales/da/messages.json
  • _locales/de/messages.json
  • _locales/el/messages.json
  • _locales/en/messages.json
  • _locales/et/messages.json
  • _locales/fi/messages.json
  • _locales/fr/messages.json
  • _locales/hu/messages.json
  • _locales/nl/messages.json
  • _locales/zh_CN/messages.json
  • data/icons/128.png
    .png
  • data/icons/16.png
    .png
  • data/icons/19.png
    .png
  • data/icons/256.png
    .png
  • data/icons/32.png
    .png
  • data/icons/38.png
    .png
  • data/icons/48.png
    .png
  • data/icons/512.png
    .png
  • data/icons/64.png
    .png
  • data/inject.js
    .js
  • data/options/index.css
  • data/options/index.html
    .html
  • data/options/index.js
    .js
  • manifest.json
  • worker.js
  • extension\custom_extension\Readme.md
  • extension\fingerprint_defender.zip
    .zip
  • audiocontext.js
    .js
  • canvas.js
    .js
  • font.js
    .js
  • manifest.json
  • webgl.js
    .js
  • extension\spoof_timezone.zip
    .zip
  • LICENSE
  • README.md
  • background.js
    .js
  • data/icons/128.png
    .png
  • data/icons/16.png
    .png
  • data/icons/256.png
    .png
  • data/icons/32.png
    .png
  • data/icons/48.png
    .png
  • data/icons/64.png
    .png
  • data/icons/disabled/128.png
    .png
  • data/icons/disabled/16.png
    .png
  • data/icons/disabled/256.png
    .png
  • data/icons/disabled/32.png
    .png
  • data/icons/disabled/48.png
    .png
  • data/icons/disabled/64.png
    .png
  • data/inject.js
    .js
  • data/offsets.js
    .js
  • data/options/index.html
    .html
  • data/options/index.js
    .js
  • manifest.json
  • moment-timezone-with-data.js
    .js
  • moment.js
    .js
  • resolve.js
    .js
  • extension\webrtc_control.zip
    .zip
  • background.js
  • data/content_script/inject.js
    .js
  • data/content_script/page_context/media_devices.js
    .js
  • data/content_script/page_context/support_detection.js
  • data/icons/128.png
    .png
  • data/icons/16.png
    .png
  • data/icons/32.png
    .png
  • data/icons/48.png
    .png
  • data/icons/64.png
    .png
  • data/icons/disabled/16.png
    .png
  • data/icons/disabled/32.png
    .png
  • data/icons/disabled/48.png
    .png
  • data/icons/disabled/64.png
    .png
  • data/icons/enabled/16.png
    .png
  • data/icons/enabled/32.png
    .png
  • data/icons/enabled/48.png
    .png
  • data/icons/enabled/64.png
    .png
  • data/options/options.css
  • data/options/options.html
    .html
  • data/options/options.js
    .js
  • lib/chrome.js
    .js
  • lib/common.js
    .js
  • lib/config.js
    .js
  • lib/runtime.js
    .js
  • manifest.json
  • killdrive.bat
  • proxy_check.exe
    .exe windows:5 windows x64 arch:x64

    d170e2e5adcfc4c271f2eb78a565305e


    Headers

    Imports

    Sections

  • proxy_check.pyc
  • search.txt
  • strip.lib
    .exe windows:6 windows x86 arch:x86

    0392634acac147c03d108c2d046e7996


    Headers

    Imports

    Sections

  • urls.txt