xDumpGo v1[.]2[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

xDumpGo v1.2.zip
Size

8.6MB
MD5

03b192f7150d2c995bdbd3878372473b
SHA1

6ed39242beccbb37fa301ac5de569edcbcaca9b4
SHA256

2dcd66dfe0c54c991591a9a026837d4a28a3e69a85338821d8eadf0f9dd7496d
SHA512

e7573c710991e8f502d8e9fa03181e4f7216820bb74a0eda35bcec19b79c682b9bfb598637aea1da7473d47af60752d5bd6de6d18ac62342a9af0817f23a52b2
SSDEEP

196608:fzIolUqGAsB9Zh0jtrN+uV9oCbSv+iRsat36SMyoFQJ9f0ffpN:EoSxN9Zh0rA29fOms38Sx9MnpN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/xdumpgo.exe

Files

xDumpGo v1.2.zip
.zip
static/assets/bootstrap/css/bootstrap.min.css
static/assets/bootstrap/js/bootstrap.min.js
.js
static/assets/css/checkbox.css
static/assets/css/montserratbold.css
static/assets/css/styles.min.css
static/assets/fonts/Simple-Line-Icons.eot
static/assets/fonts/Simple-Line-Icons.svg
.xml
static/assets/fonts/Simple-Line-Icons.ttf
static/assets/fonts/Simple-Line-Icons.woff
static/assets/fonts/Simple-Line-Icons.woff2
static/assets/fonts/fa-brands-400.eot
static/assets/fonts/fa-brands-400.svg
.xml
static/assets/fonts/fa-brands-400.ttf
static/assets/fonts/fa-brands-400.woff
static/assets/fonts/fa-brands-400.woff2
static/assets/fonts/fa-regular-400.eot
static/assets/fonts/fa-regular-400.svg
.xml
static/assets/fonts/fa-regular-400.ttf
static/assets/fonts/fa-regular-400.woff
static/assets/fonts/fa-regular-400.woff2
static/assets/fonts/fa-solid-900.eot
static/assets/fonts/fa-solid-900.svg
.xml
static/assets/fonts/fa-solid-900.ttf
static/assets/fonts/fa-solid-900.woff
static/assets/fonts/fa-solid-900.woff2
static/assets/fonts/fontawesome-all.min.css
static/assets/fonts/montserrat-bold-webfont.woff
static/assets/fonts/montserrat-bold-webfont.woff2
static/assets/fonts/simple-line-icons.min.css
static/assets/img/26be467fdc4648aa3b3299a976a0f693.webp
static/assets/img/avatars/avatar1.jpeg
.jpg
static/assets/img/avatars/avatar2.jpeg
.jpg
static/assets/img/avatars/avatar3.jpeg
.jpg
static/assets/img/avatars/avatar4.jpeg
.jpg
static/assets/img/avatars/avatar5.jpeg
.jpg
static/assets/img/dogs/image2.jpeg
.jpg
static/assets/img/dogs/image3.jpeg
.jpg
static/assets/js/bs-init.js
.js
static/assets/js/chart.min.js
.js
static/assets/js/jquery.min.js
.js
static/assets/js/script.min.js
.js
static/assets/js/theme.js
.js
views/data.html
.js
views/index.html
.js
views/layouts/master.html
.html
views/profile.html
views/proxies.html
.js
views/settings.html
views/single.html
.js
views/urlcleaner.html
xdumpgo.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Sections

XDG9
Size: - Virtual size: 9.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

XDG9
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

XDG9
Size: 4.2MB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

XDG9
Size: 612KB - Virtual size: 612KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

XDG9 Size: - Virtual size: 9.5MB

XDG9 Size: 4.6MB - Virtual size: 4.6MB

.rsrc Size: 43KB - Virtual size: 44KB

XDG9 Size: 4.2MB - Virtual size: 4KB

XDG9 Size: 612KB - Virtual size: 612KB

XDG9
Size: - Virtual size: 9.5MB

XDG9
Size: 4.6MB - Virtual size: 4.6MB

.rsrc
Size: 43KB - Virtual size: 44KB

XDG9
Size: 4.2MB - Virtual size: 4KB

XDG9
Size: 612KB - Virtual size: 612KB