Static

static

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    ProconXInput_v0.1-alpha2_release2_64-bit.zip

  • Size

    4.8MB

  • MD5

    93cb01d65cee2bc0c340fb4cf9ce1b50

  • SHA1

    c1b92e4a182d1c5ab25cd7fa5a42df02d6464203

  • SHA256

    76c2cd4b25342790803fb1fed81e93efd1cc68ee35fd15f959db6f1ca12043cd

  • SHA512

    8f70ceaf5cd994d6dc06fc85007143c3d71d185afdd712da96ab8aa4c3d31aaef1831ef4ce43e3c3dcfbb978955bc393c45cef9db239de5b29f1aeeded0df85e

  • SSDEEP

    98304:vNy/GizoQO1iL54S38/GizoQO1iL54S3b92bdCbd1/4BKQ6OZ:vN0GizoFi5d36GizoFi5d3b9+ccKQl

Score
3/10

Malware Config

Signatures

  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

Files

  • ProconXInput_v0.1-alpha2_release2_64-bit.zip
    .zip
  • CHANGES.md
  • Drivers/HidGuardian/HidGuardian.inf
  • Drivers/HidGuardian/HidGuardian.sys
    .sys windows:10 windows x64 arch:x64

    ca243dcc058f762c963f42d02d50b1e3


    Code Sign

    Headers

    Imports

    Sections

  • Drivers/HidGuardian/WdfCoinstaller01009.dll
    .dll windows:6 windows x64 arch:x64

    70497fec79daa5f71de3b34faee686a5


    Headers

    Imports

    Exports

    Sections

  • Drivers/HidGuardian/hidguardian.cat
  • Drivers/ScpVBus/ScpVBus.inf
  • Drivers/ScpVBus/ScpVBus.sys
    .sys windows:10 windows x64 arch:x64

    425e621ff2fe52bad20dba02ecc8fbff


    Code Sign

    Headers

    Imports

    Sections

  • Drivers/ScpVBus/WdfCoinstaller01009.dll
    .dll windows:6 windows x64 arch:x64

    70497fec79daa5f71de3b34faee686a5


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Drivers/ScpVBus/scpvbus.cat
  • Drivers/devcon.exe
    .exe windows:10 windows x64 arch:x64

    68d7a4b13b38a420769678c927abc196


    Headers

    Imports

    Sections

  • HidCerberus.Lib.dll
    .dll windows:5 windows x64 arch:x64

    ddd2fc33ec2a1706a25b7da9f724fea7


    Headers

    Imports

    Exports

    Sections

  • HidCerberus.Srv/Content/custom/api-requests.js
    .js
  • HidCerberus.Srv/Content/custom/viewmodels.js
    .js
  • HidCerberus.Srv/Content/dep/bootstrap-theme.min.css
  • HidCerberus.Srv/Content/dep/bootstrap.min.css
  • HidCerberus.Srv/Content/dep/bootstrap.min.js
    .js
  • HidCerberus.Srv/Content/dep/jquery-3.2.1.min.js
    .js
  • HidCerberus.Srv/Content/dep/jquery.form.min.js
    .js
  • HidCerberus.Srv/Content/dep/knockout-min.js
    .js
  • HidCerberus.Srv/Content/dep/knockout.mapping.min.js
    .js
  • HidCerberus.Srv/HidCerberus.Srv.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • HidCerberus.Srv/HidCerberus.Srv.exe.config
  • HidCerberus.Srv/index.html
  • INSTALLATION.md
  • Licenses/LICENSE-Scp.txt
  • Licenses/LICENSE-ViGEm.txt
  • Licenses/LICENSE-devcon.txt
  • Licenses/LICENSE-hidapi.txt
  • Licenses/LICENSE.txt
  • ProconXInput.exe
    .exe windows:4 windows x64 arch:x64

    6b787d79d4905db2f1fbe0f0e054c6da


    Headers

    Imports

    Exports

    Sections

  • README.md
  • RELEASE.md
  • XOutput1_1.dll
    .dll windows:6 windows x64 arch:x64

    eec00af5f92ccb6acaef483f32c55298


    Headers

    Imports

    Exports

    Sections

  • add HidCerberus blacklist.js
    .js
  • install Drivers.bat
  • uninstall Drivers.bat